Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
418
Views
0
Helpful
2
Replies

802.1x using authentication from NT Domain Controller instead of Radius

regiane.andrade
Level 1
Level 1

‎10-13-2005 01:15 PM - edited ‎03-03-2019 12:24 AM

I would like to know if it's possible to configure 802.1x using authentication from NT Domain Controller, instead of using Radius or Tacacs.

Labels:
0 Helpful
2 Replies 2

scottmac
Level 10
Level 10

‎10-13-2005 01:51 PM

It is possible to use MS AD, generic LDAP, Novell NDS for authentication, it's fairly common.

The issue is "How do get the device to talk to the authentication source ... (AD, DC, NDS, LDAP)?"

The answer is RADIUS.

You can configure RADIUS to pull authentication from a variety of source (depending on the RADIUS - many/most can use any of the LDAP-based systems).

So, yes, certainly you can use the Microsoft AD, but you need RADIUS to connect the two systems (the 802.1x device and the AD server).

If cost is the issue, try freeRADIUS (www.freeradius.org) - it's fully featured (can use LDAP, AD, NDS, Certificates, etc), it's free, and configuration is much easier than it looks ....

Good Luck

Scott

0 Helpful

ekhoo
Level 1
Level 1

‎10-13-2005 02:03 PM

Are you running MS 2000/2003 server or pure NT 4 domain controller? If you have MS 2000/2003, you can just enable the IAS services on the server. IAS is MS version of Radius server and it come with the server OS. It works very similar to all other Radius and able to handle 802.1x

With IAS you can defined your own login rules and control the users using AD policy.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card