Nebula Authentication - MAC-based Authentication for Wireless Network

Created - Updated
Serhii Boiarynov
Idea generator
Great answers
Master (Platinum)
Print Friendly and PDF
Have more questions? Submit a request

Sometimes, you want your devices to purely based on their MAC address be able to authenticate. This can be the case if your employees are always using the same devices to log in, and you do not want to hassle around with static DHCP assignments, etc. In this case, Nebula got you covered with our MAC-based authentication! The tutorial below will show you all the necessary configuration steps to achieve this.

MAC-based Authentication allows you to protect your network from unauthorized users without requiring your end devices to input or apply any security settings.

  1. Setting up the MAC-based authentication in the SSID
  2. Connecting the MAC-based authentication to the Nebula Cloud Authentication
  3. Connecting the MAC-based authentication to your own RADIUS Server
  4. Setting up the Client

 

Setting up the MAC-based authentication in the SSID

1. Go to 

Site-wide > Configure > Access point > SSID advanced settings

and select the SSID.

2. In the Network Access section, select

"Open"

or

"WPA2 Pre-shared Key".

mceclip0.png

*You cannot use "WPA2-Enterprise" together with MAC-based Authentication.

3. Turn-On MAC-based Authentication. 

mceclip1.png

*Select "My RADIUS server" if your network has a local RADIUS server for authentication.

4. Save your settings.

 

Connecting the MAC-based authentication to the Nebula Cloud Authentication

1. Go to 

SITE-WIDE > Configure > Cloud Authentication > MAC

mceclip2.png

2. Select [+ Add] and create your trusted device's MAC address.

5.PNG

3. Save your settings.

 

Connecting the MAC-based authentication to your own RADIUS Server

1. Click [+ Add a server] and configure your RADIUS server.

mceclip3.png

2. Add RADIUS client in your RADIUS server. Make sure client IP and the secret are correct.

7.PNG

*Example is taken from FreeRADIUS.

 

3. Add MAC address in the RADIUS user account. Follow the Account Format used in your Nebula AP's RADIUS server settings.
Example:

8.PNG

 

Preparing the Client

 

  1. Press Windows + R and type services.msc
  2. Search for Wired AutoConfig and set it to Automatic Start
  3. Click on Start and wait until the Service has startedmceclip0.png
  4. Control Panel Home > Network and Internet > Network and Sharing Centre > Change Adapter Settings
  5. Click Right on the correct Ethernet Connection and choose "Properties"mceclip1.png
  6. Go to the Tab "Network"
  7. Disable I/O Driver for Link-Layer Topology Detection
  8. Disable Response for Link-Layer Topology Detectionmceclip2.png
  9. Go to the Tab "Authentication"
  10. Activate "Enable IEEE 802.1X authentication"
  11. Put "Method for network authentication" on "Microsoft: Protected EAP (PEAP)"
  12. In the Advanced Settings dialogue, activate Specify Authentication Mode and select Computer Authentication
  13. Confirm the Advanced Settings dialogue with OK
  14. Confirm the Wireless Network Properties dialogue with OKmceclip5.png

 

 

 

 

Articles in this section

See more
Was this article helpful?
1 out of 2 found this helpful
Share

Comments

0 comments

Please sign in to leave a comment.