Your enterprise network is large and complex, and probably relies on numerous connected endpoints. This requires you to design your own DNS server or a custom DNS server implementation. You also need to set up your own DHCP server (if you plan to run many nodes on the same LAN), and you probably need to create a RADIUS server for authentication purposes.
On an average enterprise network, your network may have as many as 20,000 endpoints. Your network is complex and includes routers, switches, and possibly even routers/firewalls. A custom DNS implementation might need to connect to multiple external DNS servers, and your Internet service provider (ISP) may need a DNS server on your network to route requests for web sites. The RADIUS server is the “brain” of the whole system, and it can’t run without access to the network, the network is your only connection. When you create RADIUS servers, you need to take care of securing your RADIUS server with RADIUS credentials. By default, RADIUS uses plain text credentials to log on the server, however you can easily make it more secure by using RADIUS SSL certificates. Let’s go through the process of how to create SSL certificates, also there are some applications you can get online as Fortiweb to protect your networks, and you can look at this website to learn more about this.
How to create an SSL certificate:
Create a new Windows domain
Logon to a RADIUS server to use it
Click on “Tasks”
Click on “Certificates”
Click on “Add a domain controller”
Enter the password for the domain admin account Click on “Next” Click “Next” Click on “Finish” When prompted, enter the domain name and click “Next”. When prompted, enter the password for the RADIUS server Click “Next” When prompted, enter the password for the RADIUS server Click “Next” When prompted, enter the certificate and click “Next”. When prompted, enter the server name and click “Next”. When prompted, enter the RADIUS server and click “Next”. When prompted, enter the RADIUS server and click “Next”. When prompted, enter the RADIUS server name and click “Next”.
The system will verify that the certificate is correct and issue a RADIUS response to the user.
Important: As a user, you should log on to the RADIUS server using the root account and use a RADIUS username and password for authentication. If you use a RADIUS username and password, you will have to log on using the RADIUS authentication mechanism, typically via Telnet or SFTP. You can also set up a RADIUS server in an Active Directory domain, and then configure your RADIUS server in that environment to use the root account.
Note If you configure RADIUS for your organization with the RADIUS server in a domain environment, you can create a RADIUS server in that domain using Active Directory Users and Computers. The RADIUS server will be configured as the default RADIUS server for your domain. You can then configure RADIUS in your application server by selecting Configure RADIUS in RADIUS Server Configuration, then using the default RADIUS server as the RADIUS server for your application server.