New network plan, clients authentication
Hello everybody, I should buy and configure Fortigate 60F with Fortiswitch PoE and APs.
I don't have any server in the new office because the users (20 approximately) have all the domain in cloud with Azure Active Directory. So they log in to their laptops trough windows AAD authentication.
My question is related to the clients authentication, notebooks on the internal network and smartphones and everything else on a guest network.
Is there a possibility to set up a secure authentication with the network that allows the wired or wireless connection from the employee's laptop only without a radius server?
Or can I use the firewall as radius server with the allowed users listed?
Is there a possibility to use the azure domain user to present the laptop and connect it with the correct policies? How can I split the two interfaces employers and guests?
What are you suggestions for the plan?