Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
925
Views
0
Helpful
2
Replies

ACS doesn't support EAP-MD5 with Windows AD Database

c.ong
Level 3
Level 3

‎08-14-2007 07:58 AM - edited ‎07-03-2021 02:28 PM

Hi,

I would like to know the reason why ACS cannot support EAP-MD5 with Windows AD Database? I plan to implement 802.1x on Wired and choose EAP-MD5 as the EAP protocol.

I understand that IAS can be used to implement EAP-MD5 with Windows AD database provided the user account password stored as Reversable Encryption Password in the Domain Settings.

Why cant I do the same with ACS?

Thank you.

Delon

Labels:
0 Helpful
2 Replies 2

bwilmoth
Level 10
Level 10

‎08-20-2007 11:00 AM

EAP-MD5 is the lease secure protocol. Industry support for EAP-MD5 is almost very minimal. It is used in combination with other EAP techniques.

0 Helpful

Premdeep Banga
Level 10
Level 10

‎08-21-2007 03:30 PM

This is the reason,

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/Overvw.html#wp858207

ACS is not designed to work in that way. And yes, it is the least favored, or now-a-days I guess no one uses EAP-MD5. Go for PEAP.

Regards,

Prem

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card