Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
753
Views
8
Helpful
3
Replies

AD Security to Login an SSID

Salvador Antonio Quintanilla Mendoza
Level 1
Level 1

‎05-04-2013 09:58 AM - edited ‎07-04-2021 12:01 AM

"Cisco 2500 Series Wireless LAN Controller" -

Product Version.................................. 7.0.220.0

Hi!, im trying to configure a layer 2 security using 802.1x and an LDAP server to authenticate the users but im not getting access with the user credentials and sometimes when i connect to the SSID my user and password is not requested and just shows an failure connection error.

what Im configured is:

1- registered the LDAP server

2- local EAP profile (with the EAP-FAST option)

3- WLAN with layer 2 security and 802.1x

4-no layer 3 security (because I dont have to use Web authentication or something like that)

5- And in the wlan AAA options i put the LDAP server (registered before) and checked the local EAP authentication (and the profile created before)

6-the other stuff like the dhcp pool, interfaces, etc.

I test the the connection with the LDAP using the Web authentication and I get access to the network but what I need is get access to the network requesting the LDAP credentials just one time (without sessions that expire).

Did I miss something?, do i need a radius server?, is necessary configure something else? or there is other way to do this?

thanks for your comments.

Labels:
0 Helpful
3 Replies 3

Scott Fella
Hall of Fame
Hall of Fame

‎05-04-2013 07:02 PM

I don't know what you were referencing when you setup your wireless. Here is a doc that should help.

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a008093f1b9.shtml

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Salvador Antonio Quintanilla Mendoza
Level 1
Level 1
In response to Scott Fella

‎05-05-2013 03:11 PM

I followed part of that document, but i didn't do the part of the certificate. it is really necessary?

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame
In response to Salvador Antonio Quintanilla Mendoza

‎05-05-2013 03:47 PM

Well 802.1x (EAP) does use certificates. So I would say it is mandatory.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card