[isrmail69]

Hi
I need some help to make the right answer to my company CTO.
The problem is to secure Wi-Fi access without money.
The idea is:
1. Put the access point behind the FW (ngx 62) interface
2. Create user group with generic* only member.
3. Connect to Radius authentication (already exist and working good with VPN)
4. Create rule like:
Wi-Fi_Radius@SourceNetwork / Dest Network / all_needed_protocols / User_Auth / Log
5. User will connect from SourceNetwork , pass Radius auth and get resources with no more user intervention.
6. Unknown user will be stopped by authentication.
This is the scenario.
After some check I get user authentication but every second get auth prompt
And get errors installation policy when add protocols.
I think that user auth not support protocols other then: http rlogon ftp telnet.
So it wills not work normally like get connected inside the network.
Please response to my problem
Regards