"If you're a network administrator at any large,
security-conscious organization, you've got identity management
implemented for your wired endpoints. What if you want to extend
this beyond your wired infrastructure, to your wireless clients?
That's where a Remote Authentication Dial-In User Service (RADIUS)
server comes in: Your wireless access points will act as RADIUS
clients, giving your users access to your network with their
existing identities. If you haven't implemented RADIUS yet, here's
how it works:
"1. Wireless devices connect to a wireless access point using a
2. The RADIUS client requests a set of credentials from the
3. When the user types in the username and password, the RADIUS
client passes the credentials to the RADIUS server
4. The RADIUS server will apply network policies and pass the
credentials to the identity management server, e.g.Active Directory
5. The identity management server passes back the authorization to
the RADIUS server.
6. The RADIUS server confirms network connection with the
7. The RADIUS client connects the mobile device's wireless adapter
to the network."