Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
554
Views
0
Helpful
1
Replies

Wireless Client Authentication

Victor Fabian
Level 1
Level 1

‎02-08-2010 10:27 AM - edited ‎07-03-2021 06:29 PM

I have a wireless setup in my company and i would like to know how can i setup so that when somebody is trying to access the wireless private SSID it authenticates the client first (Laptop) and make sure it's part of AD and then the user .

Thank you

Vic

Labels:
0 Helpful
1 Reply 1

Robert.N.Barrett_2
Level 4
Level 4

‎02-09-2010 10:55 AM

Could you give us some more details around your clients and the wireless network config?

Generally speaking, you want to enable Machine auth with User Auth.  Assuming you are already doing PEAP user auth with Windows clients running Wireless Zero Config, and ACS 4.2 performing your RADIUS authentication, then you'll want to do the following:

- Configure the wireless profile on the PC to include machine auth: On the Authentication Tab of the wireless profile, simply check/tick the "Authenticate as computer when computer information is available"

- On the ACS 4.2, enable machine auth, and perhaps Machine Access Restriction, in the windows database config section.  Read the Cisco documentation very carefully about how MAR works to ensure it meets your needs.

The ACS guide also has a good section on enabling machine auth on Windows machines.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card