Dear All
I have a problem on logging to internet using domain account through mikrotik hotspot
any help
i have mikrotik router connected the internet modem throw wan interface
and connected to my network through lan interface
i added the dns and the global internet getaway
i have microsoft dhcp so i added no pools
i configured radius to use service login , hotspot – added only the (AD + IAS) ip address
and authentication and accounting 1812,1813 with timeout 300ms only with a specific secret
i added nothing else in the radius tab
i added ip addresses to both interfaces as i mentioned and added hotspot server acting on the lan interface using server profile enable login by pap and chap and https and enable using radius and accounting and NAS is 15-Ethernet i don’t know if this is right
I added no manual user neither user profile as i want to login only through domain account
i configured IAS to the server acting domain controller active directory
i registerd it to AD
i started the service
i made a client with friendly name MIKROTIK and ip equal to the ip on the lan interface on the mikrotik server
i made a remote access policy that if windows group matches Domain-controller\domain user : comes with any type of authentication and either unencrypted pap and spap with any type of encryption then should grant access permissions
with no connection request policy so i added no realm name
but after all i can not log to internet using user account so what is wrong in the past describtion
thanks for your help