Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
628
Views
0
Helpful
1
Replies

ACS 5.2 and Multiple Idenity store for PEAP

jain.nitin
Level 3
Level 3

‎09-26-2011 10:18 AM - edited ‎03-10-2019 06:26 PM

Hi All,

I am trying to setup PEAP authentication for wireless users but I got stuck at palce where I have single ssid and users are store in different identity stores like some will be using their active directory and some are locally created users on ACS.

I created separate service for wireless authentication and under that I am unable to create rule to differentiate them with identity stores. any idea how to achieve this.

I tried creating identity selection based on role but it does not work as for protocol like radius.peap,ms-chap ACS does not look for another identity store once user not find in an identity stores

any help will be a great help.

Thanks

Ninja

Labels:
0 Helpful
1 Reply 1

Bastien Migette
Cisco Employee
Cisco Employee

‎09-27-2011 12:23 AM

Hello Jain,

If you have no way to differentiate users to authenticate them against the right identity store, then you might create an identity store sequence, so user will be tested against multiple store until auth succeed.

See more info here:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/users_id_stores.html#wp1124005

0 Helpful
Customers Also Viewed These Support Documents