Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1133
Views
0
Helpful
1
Replies

Cisco Radius Authentication with Windows NAP with Encrypted Authentication

Go to solution
QUARK TARO
Level 3
Level 3

‎12-12-2015 09:55 AM - edited ‎03-10-2019 11:19 PM

I need to setup radius authentication for Cisco IOS devices for device management. My radius server is NAP on Windows 2008 R2. 

Can I implement this with encrypted authentication? In the attached diagram, what protocol can I use for encrypted authentication?

According to some sites, we need to enable clear text authentication. Has anyone implemented the secure authentication such as ms chap?

Labels:
Preview file
37 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
johnd2310
Level 11
Level 11

‎12-14-2015 08:54 PM

HI,

You enable clear text authentication(PAP). Remember radius sends username in the clear but  encrypts the password. You can confirm this taking a wireshark capture. You will also secure the radius encryption by using a long and complex radius key.

If you want to encrypt both username and password,  then you would use TACACS

Thanks

John 

**Please rate posts you find helpful**

View solution in original post

0 Helpful
1 Reply 1

Go to solution
johnd2310
Level 11
Level 11

‎12-14-2015 08:54 PM

HI,

You enable clear text authentication(PAP). Remember radius sends username in the clear but  encrypts the password. You can confirm this taking a wireshark capture. You will also secure the radius encryption by using a long and complex radius key.

If you want to encrypt both username and password,  then you would use TACACS

Thanks

John 

**Please rate posts you find helpful**
0 Helpful
Customers Also Viewed These Support Documents