We are using vSZ with WPA2 authentication, but we are also are implementing google cloud identy services. According to this post https://forums.ruckuswireless.com/ruckuswireless/topics/vsz-client-authentication-using-google-ldaps
we cannot connect directly to vSZ
So now I'm wondering: should I spinup a freeradius server on an ip address which authenticates via the google LDAP (I've got the radius part working via this container https://github.com/hacor/unifi-freeradius-ldap
Or should I spinup something like an LDAP proxy to google on an ip address (never tried that) ?
Is there a difference in performance?
Our vSZ is running on gce. I'm also wondering if I should run this radius/ldap proxy on our local network or on gce for performance reasons...
I hope somebody can help me with these decisions.
Kind regards, Wessel