Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
804
Views
0
Helpful
2
Replies

Aironet Radius can't authenticate against LDAP?

dopenfield
Level 1
Level 1

‎12-17-2004 02:21 PM - edited ‎03-10-2019 01:56 PM

I found this message on a help screen in ACS.

Note: Users accessing the network through a Cisco Aironet network device can only be authenticated against the CiscoSecure user database, a Windows NT/2000 user database, an ODBC user database, or an MCIS database.

Can anyone point me to an explanation of why this is???

We use the Generic LDAP here so it is kind of an issue.

Labels:
0 Helpful
2 Replies 2

scottmac
Level 10
Level 10

‎12-17-2004 08:10 PM

The local RADIUS (resident in the AP) only supports a local user list (or MAC list).

You can point to any other RADIUS server; how that server achieves authentication should be irrelevent. You can point to different RADIUS servers for different types of authentication (admin auth, EAP auth, MAC auth ...)

I've used freeRADIUS and WIN2003 SBS IAS to do MD5, EAP-TLS, and PEAP (WIN2K3 only ... haven't tried fR).

I'd suggest a good pilot trial before general deployment, but I believe you'll be OK.

FWIW

Scott

0 Helpful

dopenfield
Level 1
Level 1
In response to scottmac

‎12-29-2004 07:29 AM

I think we are talking about different issues.

The message I mentioned is on the ACS server and seems to indicate that if you use the Aironet RADIUS setup on the ACS server then you cannot use an LDAP database as your user database.

Still looking for confirmation that that is a valid statement.

0 Helpful
Customers Also Viewed These Support Documents