Authenticating wireless access points \ RADIUS through Azure AD
I would like to see Authenticating wireless access points \ RADIUS servers through Azure AD , not having to store user accounts in local active directory
NPS extension needs user accounts to be synced from AD to Azure AD. So I dont think using AADDS with NPS extension will work without on-prem AD
Anuj, can yo provide us with the steps on how was this done?
Anuj Rana commented
You can do it even now. Use AADDS with NPS extension.
A lot of customers want this feature.
Implemented it please, there will be radius a long time into the future and as more and more orgs are cloud only, the need for radius is much needed.
do it already...
Luke Bixby commented
please add this. we need this to move to modern management.
i am doing radius on azure but idk what commands should i put in router to get the username run!
Michaël VdS commented
Create a new resource and search for "RADIUS 2016 Server - Wireless Authentication NPS"
Cloud Infrastructure Services company launched a VM with the role already up and released a tutorial on their site, following the principals I've posted before.
Hope it helps
Upvote this too: Support NPS/RADIUS for Azure AD Domain Services
@David Harris, I'm with you David.
David Harris commented
Azure Radius as a service. Of course I can (have) spin up some VM's, install NPS, maybe add a load balancer, manage and patch the VM's, but this all seems overkill in this day and age . My current requirement for Meraki radius auth should' be as simple as talking to a service in Azure, right?
Anonymous, AzureAD updates passwords and their hashes on AADDS. I have that running.
I agree with you with not receiving early password expiration notifications.
Also looking for this functionality. We have the same set up as Antonio Soares. This solution works, however, there is a catch 22 with password changes because AADDS is not a writeable directory. Also, as Azure portal users users do not get any notifications from Azure AD that the password is going to expire it makes things even worse.
This is a must for us to move away from the traditional AD.
Rakesh Upadhyay commented
Can Azure VPN (P2S) Authenticate with user name & password stored in Azure AD or can RADIUS running as Azure IaaS VM talk to AAD for P2S Auth.
Still working today and other fellow colleagues that read this thread are also using this workaround.
So few needed to have this working MS.
Jason Wilson commented
Yes please. Your customers would literally throw money at you.
Great idea to deliver Radius as a Service via Azure AD. Our wifi authentication through 802.11X is one thing preventing us from moving away from traditional AD.
PLEASE add this feature! With Meraki devices you can auth with Google for wireless access in a company which is great for G Suite users but no such luck with Office 365 / Azure. You can use something like Jumpcloud that offers RADIUS as a service but it is a work around for old school tech.