cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

332
Views
5
Helpful
1
Replies
Beginner

Using RADIUS and active directory to login to devices (Security Concerns)

I've been recently testing an NPS server to handle RADIUS requests for our network devices, using active directory. Most tutorials I have followed have set the authentication method to be "Unencrypted authentication (PAP, SPAP)" on the server side. This has worked fine for me but raises security concerns and I was wondering what others have done? - The problem is, I can only seem to get the unencrypted authentication method to work, other methods like 'encrypted authentication (CHAP)' just won't allow me to log in.

 

Does anyone have any insight?

 

Thanks.

 

pap.PNG

 

Everyone's tags (2)
1 REPLY 1
Highlighted
Cisco Employee

Re: Using RADIUS and active directory to login to devices (Security Concerns)