First attempt ever at a homelab, and I've been chipping away at it for about a week. I'm trying to test EAPoL port based authentication. I got an old 2960-S and VMware for my homelab. Currently I have two Windows 2012r2 domain controllers, a Enterprise Root CA and sub CA, an NPS server and a few clients (3 virtual and 1 physical). The entire windows environment minus the physical client is on VMware workstation on my desktop.
Vlan1 is on 192.168.50.150 which is plugged into my 192.168.50.0/24 ASUS consumer grade router that I use for my apartment. I have bridged a USB-C network adapter on my VMware host (desktop) to the 2960 on vlan2 of the switch (192.168.60.0/24 network). All of my VM's are running on the .60 vlan. DNS and DHCP is working well using 192.168.60.70 as my PDC and DHCP server and 192.168.60.71 as my secondary DC. The NPS server is running 192.168.60.75 static IP.
I already have a CA template set up and GPO to automatically issue certs to domain client workstations.
I need to configure the cisco switch as a RADIUS client on the NPS server, and I'm not sure what IP to use. Do I set up a client for each of my vlans (.60 and .70)?
Also any pointers or noticeable red flags/poor design choices, let me know. I'm open to criticism. I'm also not looking to invest much more into it at this time and I'm trying to use my resources available.
Thanks
No comments:
Post a Comment