Setting Up Radius on Unifi

Tech Administration

Guide to Setting Up a RADIUS Authentication Server for Unifi Wireless Network

Overview

This guide will walk you through setting up a RADIUS authentication server on your Windows Active Directory domain to allow staff to log in to your Unifi wireless network using their AD credentials. Additionally, we will configure certificate-based authentication for staff laptops to enable automatic WiFi logins. We will also configure VLAN assignments so that students using RADIUS authentication are assigned a different VLAN than staff.

Step 1: Install and Configure Network Policy Server (NPS) on Windows Server

  1. Install NPS
    • Open Server Manager on your Windows Server.
    • Click Manage > Add Roles and Features.
    • Select Network Policy and Access Services and then Network Policy Server (NPS).
    • Complete the installation.
  2. Register NPS with Active Directory
    • Open NPS via Server Manager > Tools > Network Policy Server.
    • Right-click NPS (Local) and select Register Server in Active Directory.
    • Confirm the registration.
  3. Add a RADIUS Client (Unifi Controller)
    • Expand RADIUS Clients and Servers in NPS.
    • Right-click RADIUS Clients, select New.
    • Set a Friendly Name (e.g., “Unifi Controller”).
    • Enter the IP address of your Unifi AP Range. (e.g, 10.66.4.1/22)
    • Set a Shared Secret (you’ll need this later in Unifi settings).
    • Click OK.

Step 2: Configure Network Policy for Staff and Student Authentication with VLAN Assignments

  1. Create a New Network Policy for Staff
    • Expand Policies, right-click Network Policies, and select New.
    • Name the policy (e.g., “Staff WiFi Authentication”).
    • Click Next.
  2. Specify Conditions
    • Click Add and select User Groups.
    • Choose Domain Users or a specific AD security group (e.g., “Employees”).
    • Click Next.
  3. Configure Authentication Methods
    • Select Microsoft: Protected EAP (PEAP).
    • Click Edit and select a valid certificate (see Step 3 for issuing a certificate).
    • Ensure EAP-MSCHAPv2 is checked.
    • Check Wireless – IEEE 802.11 in the NAS Port Type
    • Click Next.
  1. Configure VLAN Assignment for Staff
    • Under Settings > Standard RADIUS Attributes, add:
      • Tunnel-Medium-Type: Set to 802 (Wireless).
      • Tunnel-Pvt-Group-ID: Enter the VLAN ID for staff (e.g., “50”).
      • Tunnel-Tupe: Set to Virtual LANs (VLAN)
    • Click Next and Finish.
  2. Create a New Network Policy for Students
    • Follow the same above but changing the AD group and VLAN.

Step 3: Set Up a Certificate Authority for Device Authentication

  1. Install Certificate Services on Windows Server
    • Open Server Manager > Add Roles and Features.
    • Select Active Directory Certificate Services.
    • Install Certificate Authority (CA) and Network Device Enrollment Service (NDES).
  2. Create a Server Certificate for NPS
    • Open Certification Authority.
    • Right-click Certificate Templates, select Manage.
    • Duplicate the RAS and IAS Server template.
    • Name it “NPS Certificate”, enable Server Authentication.
    • Issue the certificate for the NPS server.
  3. Enroll Certificates for Staff Laptops
    • Open Group Policy Management.
    • Create a new GPO (e.g., “WiFi Cert Deployment”).
    • Navigate to Computer Configuration > Policies > Windows Settings > Public Key Policies > Automatic Certificate Request Settings.
    • Add Computer Certificate Enrollment Policy and apply it to staff laptops.

Step 4: Configure Unifi Controller for RADIUS Authentication

  1. Access Unifi Network Controller
    • Open the Unifi Controller.
    • Navigate to Settings > Profiles > RADIUS.
    • Click Create New RADIUS Profile.
  2. Add RADIUS Server Details
    • Set Authentication Server to your NPS server’s IP.
      • Set Port 1812 and enter the Shared Secret
    • Set Authentication Server to your NPS server’s IP.
      • Set Port 1813 and enter the Shared Secret
    • Set Accounting Server to your NPS server’s IP.
      • Set Port 1645 and enter the Shared Secret
    • Set Accounting Server to your NPS server’s IP.
      • Set Port 1646 and enter the Shared Secret
    • Click Save.
  3. Assign RADIUS Authentication to WiFi
    • Go to Settings > WiFi.
    • Create a new WiFi network.
    • Set Security to WPA2-Enterprise.
    • Choose the RADIUS Profile created earlier.
    • Save and apply settings.
    • The clients will now connect with their AD Username and Password to the VLAN specified in the NPS Policy.

Step 5: Test and Deploy

  1. Test AD Authentication
    • Connect a device to the WiFi.
    • Enter an AD username and password. (try staff or student)
    • Check NPS logs for authentication success and correct VLAN assignment.
  2. Test Certificate Authentication
    • Ensure a staff laptop with a certificate automatically connects.
    • Verify in the Unifi Controller that authentication was seamless.
  3. Monitor and Troubleshoot
    • Check Event Viewer > NPS Logs for errors.
    • Verify RADIUS settings in Unifi.
    • Ensure Group Policy is applied correctly.

Conclusion

You have successfully configured a RADIUS authentication server with Active Directory integration and certificate-based authentication for staff laptops. Additionally, VLAN assignments allow staff and students to be placed on separate networks automatically based on their authentication group.

THE ONLY RAM YOU WILL EVER NEED!!!!!

Memory Reviews

As stated in the title this DRAM will be the only RAM you will ever need! It is the DOMINATOR TITANIUM RGB 32GB and it comes in a purchase package of 2 so it adds up to 64GB. It is also double channel so if you have it again (which you will because of the purchase package) it will increase the performance!

It works with higher end builds however. But the people who buy this will probably be computer connoisseurs. I wouldn’t be saying all this stuff without testing the RAM myself of course. I thought it made all my multiple tabs open and run smoothly in my daily work. When I had games running it worked just as fine.

You wont get good quality like this from other RAMS. This thing is speedy let alone it gets the job done. Just look at the Amazon reviews.

I suggest that if you want good performance and a great experince you get this RAM ASAP!!!

 

NOTE: THIS IS FOR A SCHOOL PROJECT

CHEAP! CHEAP! CHEAP! COME GET YOUR VENGEANCE® LPX 16GB (2 x 8GB) DDR4 DRAM 2133MHz FOR ONLY $35.99 RIGHT NOW AT THE OFFICIAL CORSAIR WEBSITE!!!!!!!!!!!!

Memory Reviews

OH YEAH!!!!11!!!!111

Just as stated in the title this thing is cheap but effective the best combination there is! Its prefect for lower end setups and with its streamlined it really just slots right in. I have been using this type of ram from Corsair for years, and it has yet to give me any trouble. I am too broke to afford any sort of fancy RGB RAM that Corsair has been putting out so this is perfect.

Most other RAMS at this price run at a snails pace, if the snail was half-blind and had a terrible sense of direction. Even though the title states its speed is 2133Mhz is can go even higher. This particular make of RAM is available in Mhz all the way up to 4000! Of course the price goes up with this change as well but even then its still more affordable than most other sticks on the market. However, I prefer to bathe in the 2133s because they don’t hurt my wallet as much.

VENGEANCE® LPX 16GB (2 x 8GB) DDR4 DRAM 2133MHz C13 Memory Kit - Black

Majority of people who have gotten this thing and given the good ol’ one two with their computer agree with me about its affordability and effciency. I have no Idea what I’m saying but please get this RAM, my lively hood depends on it, I cant stop buying them please, help.

Anyway, look at these radical reviews! So even if you don’t believe me you would be hard pressed to argue with 40,574.8 people! Go along with the will of masses! You won’t regret it, nobody ever does. SO JOIN THE HYPE TRAIN AND GIVE THIS THING A 10 OUTTA 10!

https://www.corsair.com/us/en/p/memory/cmk16gx4m2z3200c16/vengeancea-lpx-16gb-2-x-8gb-ddr4-dram-3200mhz-c16-amd-ryzen-memory-kit-black-cmk16gx4m2z3200c16

https://www.amazon.com/Corsair-Vengeance-2133MHz-Desktop-Memory/dp/B0123ZCD36?th=1

Note:  This review is part of a classroom project. 

Also I do not need help, do not come looking for me at 350 Grand St, Trenton, NJ 08611 you will not find me.

CORSAIR VENGEANCE LPX DDR4 💥💥💥

Memory Reviews

RAM can be confusing, I know from experience. I’m sure we’ve all had the experience of buying a computer or laptop for personal use, and then you come to learn that it can barely run Microsoft Word and Google Chrome at the same time. So, what should you get if you want a computer for your home? I’d suggest the…

Corsair VENGEANCE LPX!

        Click this it for the full image

I specifically tried the 2666 MHz version, but you should get whatever works with your motherboard. It doesn’t make too big of a difference. It’s $17.99 on the Corsair website.  The kit I linked was only 8GB, but that’s all you really need for a home computer. It’s not something you use to mine crypto, or whatever those tech bros are doing nowadays. However, it’s perfect for Chrome, and the occasional game of Tetris.

 

So, why should you get it? Well, it’s quite affordable. Computers are expensive, so why throwaway good money on extra memory you won’t use? You can use the money you saved on say, oh I don’t know. Genshin pulls? I know what you PC builders do in your free time. Even if you don’t play Genshin Impact (don’t play it. It’s not worth it), the extra money is nice.

Another thing is that it has aluminum heat spreaders all over it, meaning that it doesn’t feel like it’ll cause a 2nd degree burn if you touch it. You can push it harder without having to worry about your PC catching on fire like a lithium battery. Why would pushing it harder be useful in a home setting? It’s useful because there’s quite a few people who DON’T CLOSE THEIR CHROME TABS. Yes, I’m calling you out, but also myself. I have 18 tabs as I’m writing this, and the heat spreaders makes my absolute dog water PC feel just fine. It runs just fine, if not better than when I had my previous RAM in there.

I’d seriously suggest checking this RAM out if you need something affordable and low heat. I noticed it had 4.7 stars on Amazon, and I can see why. Who knows, it could be perfect for your build!

Sources

Amazon
Corsair

NOTE: This is a classroom project!!! This was done for SCHOOL!!!!

 

DATO 16GB DDR4 3200MHz RAM

NT IT Reviews

If you’re looking for a reliable and high-performance RAM upgrade for your desktop, the DATO 16GB (8GBx2) DDR4 3200MHz RAM might just be what you need. With speed, efficiency, and cooling built into its design, this memory kit is perfect for gamers, content creators, and anyone looking to boost their system’s performance.

Why Would You Choose DATO 16GB DDR4 RAM?

With a 3200MHz clock speed, this RAM kit ensures smoother multitasking, faster load times, and improved system responsiveness. Whether you’re gaming, editing videos, or handling heavy workloads, this memory helps your PC keep up.

Low Latency for Speedier Data Access

Thanks to its CL16 latency, data moves quickly, making apps launch faster and reducing lag during high-performance tasks.

Cool and Efficient

The built-in heatsink helps dissipate heat, ensuring your system stays stable even during extended use. Plus, with a low 1.35V power requirement, it’s designed for energy efficiency without sacrificing performance.

Easy Installation & Compatibility

Designed as a 288-pin Non-ECC UDIMM, this memory is compatible with most modern desktop motherboards, making installation quick and hassle-free. Just plug it in, and you’re good to go!

What Do Users Say?

“Great value for the price! Not only did it speed up my system, but the heatsink keeps everything running cool.”

“Perfect for gaming! No more lag or stuttering in my favorite FPS games.”

Final Thoughts: Is It Worth It?

Absolutely! If you need a fast, reliable, and efficient RAM upgrade, the DATO 16GB (8GBx2) DDR4 3200MHz is a solid choice. It delivers great speed, smooth performance, and improved cooling, making it a worthy investment for any desktop user.

Thinking of upgrading? Make sure your motherboard supports DDR4 3200MHz before purchasing.

Where to Buy: Check it out on Amazon

Note: this is for a school project 

CORSAIR VENGEANCE DDR5

Memory Reviews

Hey! Thanks for looking at my blog post…

Today I have one of CORSAIR’s best RAM, The CORSAIR VENGEANCE DDR5 RGB series I actually love how much I can control the RGB with CORSAIR’s iCUE Link to match my PC’s aesthetic. I currently use this RAM with my X870E AORUS ELITE motherboard and it actually looks pretty good on the motherboard too,  And It also performs very well in demanding games like Escape From Tarkov or Day Z I would highly recommend this ram if you’re looking to switch to DDR5.

Specs:

2x16GB= 32GB

6400Mhz

CL36-48-48-104 AKA CAS LATENCY

On Sale $94.99

Normal Price: $114.99

https://www.amazon.com/CORSAIR-VENGEANCE-6400MHz-Compatible-Computer/dp/B0BXHC74WD/ref=sr_1_13?crid=OENGWP24O3GI&dib=eyJ2IjoiMSJ9.VDYgQDdO40-cJYPKaIwukrpAmFH2VVgGYZSZYhkwptOyQRIB2xNHV4jZs9FUyw6ayKROI37nloJe3oPXgyBtrHque_aBHJCiGNzoLALVRAujyOxUWJJmXcm7ic8mWgfZcxdzH9NXE7_Zif5hzhPdfYBKvPwfr6S2NA7dWBBt66Vf0lrV1HH_sbyQEDM9aEPWOgZRcBtd6DYn_OWs1Isx6yatIAzza2yxIuvY8xH46k8_hc3rMQBMzrzPOsjqfNkO07xPTvUPSKiTFmu1O-amKjLb4U0rSXJETm2Y4L5_OVqqQ82msRm7YGJLD16vGmYcQccekD_XzWCFCWW9HjV7tugtdMGxVd6Bq-9IQ3fjZ7c.csXtB1X_bvaKT7SVwc-jVWV60BEInY1iiwH3WxA_vrU&dib_tag=se&keywords=corsair%2Bddr5&qid=1741183495&s=electronics&sprefix=corsair%2Bddr5%2Celectronics%2C158&sr=1-13&th=1

This is for a school project.

Trident Z5 RGB Series 32GB

Memory Reviews

Today I have the Trident Z5 RGB Series 32GB I used this RAM for my gaming PC and it works amazing. The Trident Z5 RGB Series is very reliable and fast as I’ve used this Memory stick for awhile now without any major problems. I highly recommend if you have a MSI MPG Z790 EDGE motherboard or if your motherboard is compatible.  This Memory was the fastest I could find for my gaming motherboard.

The specs:

  • 149.99$ (on amazon as of 3/6/2025)
  • Capacity- 32GB
  • Type- 288-pin PC RAM
  • Speed- DDR5 6000 (PC5 48000)
  • CAS Latency CL36 (36-46-46-125)
  • Voltage- 1.45V
  • No ECC
  • Color- Matte Black
  • Recommended for Gaming
  • RGB yes

 

Note: This is for a school project.

JSON issues when securing Llama with Nginx

IT Support

It looks like your issue might stem from one of the following causes:

Possible Causes and Fixes:

  1. Misconfiguration in Nginx Reverse Proxy

    • If Nginx is improperly handling WebSockets or HTTP requests, it could be modifying or breaking JSON responses from your Llama 2 API.
    • Fix: Ensure your Nginx configuration includes proper proxy settings:
      nginx
      location / {
      proxy_pass http://localhost:PORT; # Replace PORT with your Llama 2 API port
      proxy_set_header Host $host;
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-Forwarded-Proto $scheme;

      proxy_buffering off;
      proxy_http_version 1.1;
      proxy_set_header Upgrade $http_upgrade;
      proxy_set_header Connection "Upgrade";
      }

  2. Certbot HTTP-01 Challenge Interference

    • Certbot might have temporarily modified your Nginx config and is interfering with normal operation.
    • Fix: Try restarting Nginx after Certbot finishes:
      nginx
      sudo systemctl restart nginx

  3. Mixed Content Issue (HTTP vs. HTTPS)

    • If the AI server is still using HTTP but Nginx is serving HTTPS, responses might be malformed.
    • Fix: Ensure the Llama 2 backend API is also running with HTTPS or use proxy_redirect:
      nginx
      proxy_redirect http:// https://;

  4. JSON Response Encoding Issue

    • If Nginx is interfering with response headers, ensure JSON content-type is correctly set.
    • Fix: Add:
      nginx
      proxy_set_header Content-Type application/json;

Next Steps

  • Check the Nginx logs:
    nginx
    sudo journalctl -u nginx --no-pager --lines=50
  • Verify Certbot logs for potential misconfigurations:
    bash
    sudo cat /var/log/letsencrypt/letsencrypt.log
  • Try disabling Nginx temporarily and directly accessing the AI server to confirm JSON responses are correct.

The AMD RYZEN 7 9800X3D is Awesomeness

CPU reviews

The AMD Ryzen 7 9800x3d is an absolute beast of a CPU. using this CPU is like opening doors as the hulk, its effortless and almost feels like overkill.

Gaming: this CPU is amazing for games, including  games that are notorious for being insanely demanding, and it runs well on even the higher graphic options like a hot knife through butter. The load time on this thing is almost non-existent, the 3D V-Cache tech this was absolutely worth it.

Cooling and Efficiency: the AMD RYZEN 7 9800X3D is cool as ice, and stays that way through even the most grueling of tasks, like heavy games or rendering things. For how much of a beast this CPU is, its temperatures stay down and the power usage is surprisingly low as well.

Compatibility: Any am5 motherboard is compatible, although you may need to do a BIOS update.

Overclocking: Its normal performance is already more than enough for most things but even then the overclocking on this thing is  superb.

final thoughts: i think this would be a fine addition to your pc build if you are a gamer, animator, or just want a beefy CPU for whatever reason.

Prices:

amazon, $569.59

new egg, $599.00

[this is a class project]

CPUBenchmark.net. (n.d.). AMD Ryzen 7 9800X3D benchmarks. CPU Benchmark. Retrieved February 5, 2025, from https://www.cpubenchmark.net/cpu.php?cpu=AMD+Ryzen+7+9800X3D&id=6344

Newegg. (n.d.). AMD Ryzen 7 9800X3D Ryzen 7 9000 Series Granite Ridge Zen 5 Socket AM5 Processor. Newegg. https://www.newegg.com/amd-ryzen-7-9800x3d-ryzen-7-9000-series-granite-ridge-zen-5-socket-am5-processor/p/N82E16819113877

Amazon. (n.d.). AMD Ryzen 7 9800X3D 16-Thread Desktop Processor. Retrieved February 11, 2025, from https://www.amazon.com/AMD-9800X3D-16-Thread-Desktop-Processor/dp/B0DKFMSMYK

 

AMD Ryzen 5 5600x Review

CPU reviews

The AMD Ryzen 5 5600X is a high-performance CPU that is both reliable and fast. You can purchase this CPU for only $119.89. With 6 cores and 12 threads, it offers quick response times, making it easy to run multiple windows and tabs simultaneously. It performs exceptionally well for gaming and other high-performance tasks. The AMD Ryzen 5 5600X has received excellent reviews, and very few users have had negative feedback about it. Overall, it comes highly recommended. Users have expressed numerous positive opinions regarding the performance of this processor. With its reasonable price, the AMD Ryzen 5 5600X is definitely worth the investment

The AMD Ryzen 5 5600X is a high-performance CPU known for its reliability and speed, making it an excellent choice for gamers and content creators. Priced at just $119.89, it features 6 cores and 12 threads, enabling quick response times and seamless multitasking with multiple windows and tabs.

Key Features:

-Cores/Threads**: 6 Cores, 12 Threads

-Performance: Excels in gaming and high-performance tasks.

With its impressive performance, the AMD Ryzen 5 5600X has garnered outstanding reviews, with very few users reporting negative experiences. Many users have expressed their satisfaction, highlighting its exceptional performance in gaming and demanding applications. Overall, the AMD Ryzen 5 5600X comes highly recommended due to its excellent performance and reasonable price. It’s an investment worth making for those looking to upgrade their system without breaking the bank.

 

(note this is part of a school project)