07-08-2013 03:29 AM - edited 07-04-2021 12:21 AM
I want to know that how can PC's & laptops connect wireless using certificate based authentication on WLC 2504.
Certificates should be created on 2504 contoller not on CA server.
07-08-2013 04:39 AM
The WLC cannot create certificates for client devices of your intention is to perform EAP-TLS. The WLC can do local EAP and act like a radius by using local EAP feature. Here is a document on configuring local EAP.
http://www.cisco.com/en/US/docs/wireless/controller/7.2/configuration/guide/cg_security_sol.html#wp2166641
Sent from Cisco Technical Support iPhone App
07-10-2013 02:58 PM
Hello,
As per your query i can suggest you the following solution-
EAP-FAST with certificates on both the client and the server side. For this, the setup uses Microsoft Certificate Authority (CA) server to generate the client and server certificates.
The user credentials are stored in the LDAP server so that on successful certificate validation, the controller queries the LDAP server in order to retrieve the user credentials and authenticates the wireless client.
This document assumes that these configurations are already in place:
Refer to Configuring Windows 2003 as a Domain Controller for more information on configuring a Windows 2003 server as a domain controller.
Refer to Install and Configure the Microsoft Windows 2003 Server as a Certificate Authority (CA) Server in order to configure Windows 2003 server as Enterprise CA serve
For more information please refer to the link-
http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a008093f1b9.shtml
Hope this will help you.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide