cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1182
Views
1
Helpful
1
Replies

Configuring WLC 5508 and Iphone/blackberry to use certificates

endpoint
Level 1
Level 1

Hello, we would like to configure additional wlan for iphone/blackberry internet access. The goal is to have internal users (Active Directory users) using blackberry connecting to internal wireless network and update their mailboxes. We would like to avoid roaming charges for blackberry data traffic (email updates) but on the other hand we have to provide some way of authentication to blackberry/iphone so we know that only corporate blackberry/iphones can connect to internal network and update emails. It would be greatly appreciated if someone point me to configuration docs covering this issue or give me quick overview what has to be done to make this happening. We have radius server available if needed.

Thanks so much.

Appreciated.

1 Reply 1

Elliott Shawd
Level 1
Level 1

http://www.cisco.com/en/US/customer/products/ps6366/products_configuration_example09186a0080921f67.shtml

With PEAP, you set up a Windows Server box as a root Certificate Authority and install the CA on all clients. Then, clients simply log on with their AD credentials.

http://www.cisco.com/en/US/customer/tech/tk722/tk809/technologies_white_paper09186a008009256b.shtml

EAP-TLS is much more secure because it requires a unique certificate generated by the CA installed on each client.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: