I have 5, soon to be 9 AP’s in WDS mode and am using only mac filtering for authentication. It is really getting tedious keeping all of the access lists up to date on all AP’s. I can export the list from one and import it to the others (from the a terminal but not Winbox), but only after I erase the entire current list before I import. If I don’t, I get the error that the record already exists and the import stops, when the import reaches the first record that is a duplicate. I have not used usermanager but understand it can be used to to manage mac filtering access lists across multiple AP’s. I have logged into usermanager but am not sure how to get this working. By the way, I am not using a Radius server. I suspect that there is a way to have a script run on the scheduler to export the list from the main AP to all other AP’s, and then have a schedule to run on the other AP’s to import the list (after deleting the current list to keep from getting the duplicate record error).
How about exporting via the scheduler to a network drive and importing via the scheduler from the same network drive? Is that possible?
Does anyone have ANY info on this that they could share with me please?
you may use one centralized User-Manager to manage multiple wireless access points,
http://wiki.mikrotik.com/wiki/User_Manager/Wireless_Example
So all clients will be checked via RADIUS database, before they are able to authenticate.
Thanks Sergejs. I am not sure about the radius server. I see only references to a radius client in the user manual and reference to FreeRadius etc. But in Winbox I see a the tab about radius server. Can the AP run the radius server or do I need to use an actual server running radius?
Ok, I have tried to follow the wiki indicated but am having some problems.
For example, I am using WDS with several access points, but the main AP/router also allows clients to connect. So, for example these instructions;
/ tool user-manager router add subscriber=MikroTik ip-address=x.x.x.x shared-secret=123456
‘x.x.x.x’ is the address of the Access Point router, ‘shared-secret’ must match on both User Manager and Access Point routers.
What do you do when the SAME access point is the “User Manager” router AND the “Access Point” router?
I have to say that I am getting VERY frustrated with trying to configure the Mikrotiks. I have an intermediate network background and understand networking. But, between the wiki and the user manual, I am getting confused as hell. It seems that they always assume you know the prerequisites. For example, can someone show me a place that explains using a Radius server? I can not find anywhere that confirms that you must have a separate Radius server running or not. The above wiki seems to indicate that the AP or usermanager can act as the Radius server. There is even a “Radius Server” tab in Winbox, but the user manual only speaks about a Radius client. Plus, most of the user manual speaks only about the commands via telnet. There is little documentation on how to perform the same actions is Winbox (which I use).
As for the forums, I thank the few people that have given advice and helped out, but several of my requests have gone unanswered.
I am really getting frustrated and would like someone that is using the same approach that I need help me get this figured out.