Knowledge Center

How do I set up a WPA2-Enterprise wireless network with RADIUS Server on Synology Router?

Last updated:Oct 7, 2022

How do I set up a WPA2-Enterprise wireless network with RADIUS Server on Synology Router?

Purpose

This article guides you through how to set up a wireless network with a RADIUS authentication locally on your Synology Router, using the Synology RADIUS Server package.

Before proceeding with the setup, make sure the following:

  • You have set up SRM on your Synology Router properly.
  • You have downloaded and installed the RADIUS Server package from SRM Package Center.

Contents

Resolution

A. Set up RADIUS Server

  1. At RADIUS Server > Settings, the Authentication port is 1812 by default. Here, you can leave it unchanged.
  2. Go to the Clients page. Click Add, and in the pop-up window, enter the following:
    • Name: Enter the name here for you to identify the RADIUS client afterward.
    • Shared secret: Enter a shared secret text string to be used between RADIUS Server and your Synology Router.
    • IP address: Enter the local IP address of your Synology Router.
  3. Click Apply to save the settings.

B. Manage users in Control Panel

  1. At SRM Control Panel > User, create user accounts you wish to allow the access to your wireless network.1
  2. Click Apply to save the settings.

C. Configure wireless settings in Wi-Fi Connect

For SRM 1.3 and above

  1. Go to Wi-Fi Connect > Wi-Fi Settings > Wi-Fi Network.
  2. Click ... > Edit in the upper-right corner of your target local network.
  3. Configure the following settings:
    • Security level: Select WPA2-Enterprise. Then, you will see the settings indicated below.
    • IP address: Enter the IP address of the RADIUS Server. Since the RADIUS Server is set up locally on your Synology Router, please enter the local IP address of your Synology Router here.
    • Port number: Enter the port used by RADIUS Server.
    • Shared secret: Enter the shared secret you have configured in RADIUS Server.
  4. Click Apply to save the settings.
  5. Now your client devices can connect to your WPA2-Enterprise wireless network with their credentials.

For SRM 1.2

Notes:

  1. If your Synology Router joins a domain or becomes an LDAP client, you can go back to RADIUS Server > Settings to allow for authentication of your domain/LDAP users. Then, your domain/LDAP users can access your WPA2-Enterprise wireless network using their credentials.
Purpose
Contents
Resolution
A. Set up RADIUS Server
B. Manage users in Control Panel
C. Configure wireless settings in Wi-Fi Connect