Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7962
Views
5
Helpful
2
Replies

certificate based authentication on 2504 wireless controller

Jitender Singh yadav
Level 1
Level 1

‎07-08-2013 03:29 AM - edited ‎07-04-2021 12:21 AM

I want to know that how can PC's & laptops connect wireless using certificate based authentication on WLC 2504.

Certificates should be created on 2504 contoller not on CA server.

1 person had this problem
Labels:
0 Helpful
2 Replies 2

Scott Fella
Hall of Fame
Hall of Fame

‎07-08-2013 04:39 AM

The WLC cannot create certificates for client devices of your intention is to perform EAP-TLS. The WLC can do local EAP and act like a radius by using local EAP feature. Here is a document on configuring local EAP.

http://www.cisco.com/en/US/docs/wireless/controller/7.2/configuration/guide/cg_security_sol.html#wp2166641

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Abhishek Abhishek
Cisco Employee
Cisco Employee

‎07-10-2013 02:58 PM

Hello,

As per your query i can suggest you the following solution-

EAP-FAST with certificates on both the client and the server side. For this, the setup uses Microsoft Certificate Authority (CA) server to generate the client and server certificates.

The user credentials are stored in the LDAP server so that on successful certificate validation, the controller queries the LDAP server in order to retrieve the user credentials and authenticates the wireless client.

This document assumes that these configurations are already in place:

  • A LAP is registered to the WLC. Refer to Lightweight AP (LAP) Registration to a Wireless LAN Controller (WLC) for more information on the registration process.
  • A DHCP server is configured to assign an IP address to the wireless clients.
  • Microsoft Windows 2003 server is configured as domain controller as well as CA server. This example uses wireless.com as the domain.

Refer to Configuring Windows 2003 as a Domain Controller for more information on configuring a Windows 2003 server as a domain controller.

Refer to Install and Configure the Microsoft Windows 2003 Server as a Certificate Authority (CA) Server in order to configure Windows 2003 server as Enterprise CA serve

For more information please refer to the link-

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a008093f1b9.shtml

Hope this will help you.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card