06-13-2022 12:49 AM - edited 06-13-2022 02:09 AM
Hi Team,
Our team have been using LDAP and RADIUS using MSCHAPv2 protocol
What is the reason that when the dot1x is enabled, ISE does not receive the logs for the same ?
How do I enable 801.1x authentication in endpoints that are connected to an LDAP server ?
06-13-2022 01:30 AM
06-13-2022 09:47 PM
Identity Stores using direct LDAP connection do not support PEAP-MSCHAPv2 due to the way the passwords are stored/secured. See the 'Authentication Protocols and Supported External Identity Sources' table in the ISE Admin Guide.
If you need to use PEAP-MSCHAPv2, you would need to integrate ISE with Active Directory as per this guide.
If you need to use LDAP instead of AD Integration, you would need to use an authentication protocol supported by LDAP, like EAP-TLS.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide