Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
36003
Views
10
Helpful
17
Replies

Authentication via Active Directory

Go to solution
saquib.tandel
Level 1
Level 1

‎03-06-2010 07:12 AM - edited ‎07-03-2021 06:35 PM

Hello

We  got Wireless LAN Controller and 5 Access Point, its still not production.

We connect to AP using static WPA2, how can authenticate via Active Directory instead of WPA2.

We got Windows 2003 Domain Controller acting as DNS / DHCP

thanks

ST

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to saquib.tandel

‎03-06-2010 10:49 PM

Sure... just replied to that thread.

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful
17 Replies 17

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎03-06-2010 08:28 AM

Do you have a Microsoft IAS or NAP (2008 Server so maybe not) radius server setup?  This way you can use WPA2/AES PEAP fro your encryption/authentication method.  Here is a link that explains the setup:

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
saquib.tandel
Level 1
Level 1
In response to Scott Fella

‎03-06-2010 09:47 PM

Thansk for replying.

I got Cisco ACS 4.2 and configured external database for Active Directory.

ACS is authenticating VPN users only.

Is there a document to have wireless user authenticate using ACS external database ( active directory 2003 )

0 Helpful

Go to solution
saquib.tandel
Level 1
Level 1
In response to Scott Fella

‎03-06-2010 10:39 PM

Many Thanks.

Cisco Aironet Desktop Utility is it free or license.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to saquib.tandel

‎03-06-2010 10:41 PM

You don't need that.... you would need the Cisco wireless card for that, but most of the cards out there support PEAP.  Depending on your wireless card, you can search for how to configure PEAP.  Here is one if you use windows.

http://articles.techrepublic.com.com/5100-10878_11-6148574.html

http://www.cisco.com/en/US/docs/wireless/technology/peap/technical/reference/PEAP_D.html

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
saquib.tandel
Level 1
Level 1
In response to Scott Fella

‎03-06-2010 10:45 PM

Many Thanks

We got 500+ users and unfortunately all dont use the same brand of laptop.

supporting users become difficult due this factor, any peice of software needs to be installed on laptop to have make support easier.

Software can be paid or free.

can u help with my other post guest internet access.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to saquib.tandel

‎03-06-2010 10:49 PM

Sure... just replied to that thread.

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to saquib.tandel

‎03-06-2010 10:52 PM

With that many, not having a standard issue or using windows GPO makes it hard.  You don't want to have to touch all of the machines.

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
rizwan.corvit
Level 1
Level 1

‎04-04-2011 12:37 AM

Hello Man !

your provided documents and links are very effective. thank you guy for your help. right now i have to problem below listed,

I have Cisco aironet 1142n access point. I have no ACS / WLC

but want to authenticate end users 802.1x with Active directory 2003/2008 using RADIUS (IAS/NPS).

These APs are standalone. Please provide any configuration document

"How to authenticate end users with active directory using cisco 1142n Standalone (Without WLC/ACS)".


Thanks & Regards,


Rizwan Haider Siddiqui.

0 Helpful

Go to solution
dmantill
Level 4
Level 4
In response to rizwan.corvit

‎04-04-2011 07:20 AM

Here it is a configuration example of EAP with wep encryption if you want you can change the encryption and keymanagement to WPA or WPA2 and that will be it...

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801bd035.shtml

Go to solution
rizwan.corvit
Level 1
Level 1
In response to dmantill

‎04-05-2011 03:47 AM


Thank you brother for your effective reply.


Could you please advise me that I have no ACS server Software / Hardware.


I have Windows 2003 / 2008, Cisco 1142n AP, IAS / NPS as RADIUS Server.


your provided document can fullfill above requirement ?


thanks you so much !!!!!!!!!!


0 Helpful

Go to solution
dmantill
Level 4
Level 4
In response to rizwan.corvit

‎04-05-2011 07:59 AM

Hi

Sure, it can be done with the IAS or NPS.

Use these other docuemts as reference for setting up the Microsoft side.

So irther if you use it as standalone or unified with a WLC this will help you.

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

Please rate the post if you found these useful.

Go to solution
rizwan.corvit
Level 1
Level 1
In response to dmantill

‎04-05-2011 09:08 PM

thanks Man.


you are Great Man ! thank you


if you need any help from my end. kindly let me know. I am working with Cisco Gold Partner.


rizwan.haider@msn.com / rizwan.haider@corvit.com      www.corvit.com

0 Helpful

Go to solution
dmantill
Level 4
Level 4
In response to rizwan.corvit

‎04-05-2011 09:14 PM

Rizwan

You are welcome, and if you need any assitance do not hessitate to contact us back.

We will keep your contac information at hand if we need anything.

Have a good one!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card