Thanks, It occurs to me that I could enable a radio server on my CCR1036 that it reaches via VPN. What do you think of this plan?Yes and no - 802.1x is supported like on every Mikrotik device with bridge functionality, but you need an external radius server for the 802.1x authentication. hAP ac lite doesn't have UserManager (which is an on-board RADIUS server) in ROS 6.x, so I'd be surprised if it was added in ROS 7.x (where UserManager appears to support the features needed for 802.1x).
You can use filtering by MAC address, but it can be fooled around easily.
If the CCR runs 7.x which is still a beta as of writing this, it could be a solution. If it runs 6.x, the UserManager doesn't provide the necessary RADIUS capabilities.It occurs to me that I could enable a radio server on my CCR1036 that it reaches via VPN. What do you think of this plan?
Thanks Sindy, then, the better choice is to use a Radius Servet on Windows ir Linux...If the CCR runs 7.x which is still a beta as of writing this, it could be a solution. If it runs 6.x, the UserManager doesn't provide the necessary RADIUS capabilities.It occurs to me that I could enable a radio server on my CCR1036 that it reaches via VPN. What do you think of this plan?
"hAP" means home AP. There are more suitable models for User Manager / RADIUS server functionalityYes and no - 802.1x is supported like on every Mikrotik device with bridge functionality, but you need an external radius server for the 802.1x authentication. hAP ac lite doesn't have UserManager (which is an on-board RADIUS server) in ROS 6.x, so I'd be surprised if it was added in ROS 7.x (where UserManager appears to support the features needed for 802.1x).
You can use filtering by MAC address, but it can be fooled around easily.