I am attempting to create an authentication system for my network via Radius. Eventually, I want all machines on the network to authenticate with Radius before gaining access to any other network resources, and I want to be able to log the activity of each machine.
For now, baby steps. I have a Linux server running Ubuntu which is connected to a TP-LINK unmanaged switch. Connected to a TP-LINK unmanaged switch (could this be a problem for me later?), I have a server running Ubuntu with RADIUS successfully installed and radtest working on localhost, a windows laptop running vista, and a Macbook pro.
The switch assigns each machine an IP like this: 169.254.108.110. At least between the Macbook pro and the Ubuntu server, they can ping each other. Now, how would I authenticate with Radius on my Ubuntu server from my Macbook pro?
You're Doing It Wrong.
You should get a proper switch that supports 802.1X authentication and configure that. It does exactly what you're asking for.
Now, as for "log the activity of each machine", you need to actually define that. Do you: