topic Re: LeapProxy method to Authenticate Wireless Users with AD in Wireless https://community.cisco.com/t5/wireless/leapproxy-method-to-authenticate-wireless-users-with-ad/m-p/1635294#M19660 <HTML><HEAD></HEAD><BODY><P>To my opinion, NPS, since it's a Windows Server 2008, has to be installed on a Domain Controller or member Server of the domain. So it does have connectivity and credentials to AD since it's running on a machine with access to the domain.</P><P></P><P>However this is a 100% Microsoft question I'd say and if you have more concerns, you're better off trying a Microsoft forum <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P></BODY></HTML> Mon, 17 Jan 2011 07:09:46 GMT Nicolas Darchis 2011-01-17T07:09:46Z LeapProxy method to Authenticate Wireless Users with AD https://community.cisco.com/t5/wireless/leapproxy-method-to-authenticate-wireless-users-with-ad/m-p/1635293#M19659 <P>Hi Friends,</P><P></P><P>Recently i came across the settings on ACS, known as LeapProxy, where, NPS (Network Policy Server) was installed on AD (Active Directory), and we enabled Radius server feature on NPS. Please refer the attachment.</P><P></P><P>We are using PEAP method for Authentication. How it is integrated is like following,</P><OL><LI>Users with the help of a supplicent connect to wireless, and Opt for PEAP method.</LI><LI>WLC is integrated with ACS.</LI><LI>On ACS we have defined AD server as LeapProxy Server.</LI><LI>Request is forwarded to LeapProxy's Radius server.</LI><LI>Radius Server forwards to AD.</LI></OL><P></P><P>Now the question i have, "How NPS/Radius server is forwarding the request to AD?". NPS/Radius server is on the same AD machine. In NPS/Radius we do not have any AD credentials. Although it worked, but i am not getting the data flow details.</P> Sun, 04 Jul 2021 02:40:57 GMT https://community.cisco.com/t5/wireless/leapproxy-method-to-authenticate-wireless-users-with-ad/m-p/1635293#M19659 rashidsiddiqui 2021-07-04T02:40:57Z Re: LeapProxy method to Authenticate Wireless Users with AD https://community.cisco.com/t5/wireless/leapproxy-method-to-authenticate-wireless-users-with-ad/m-p/1635294#M19660 <HTML><HEAD></HEAD><BODY><P>To my opinion, NPS, since it's a Windows Server 2008, has to be installed on a Domain Controller or member Server of the domain. So it does have connectivity and credentials to AD since it's running on a machine with access to the domain.</P><P></P><P>However this is a 100% Microsoft question I'd say and if you have more concerns, you're better off trying a Microsoft forum <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P></BODY></HTML> Mon, 17 Jan 2011 07:09:46 GMT https://community.cisco.com/t5/wireless/leapproxy-method-to-authenticate-wireless-users-with-ad/m-p/1635294#M19660 Nicolas Darchis 2011-01-17T07:09:46Z