Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2205
Views
0
Helpful
3
Replies

Cisco 2600 autonomous AP with multiple authentication- WPA2 & Radius

Go to solution
Thomas Park
Level 1
Level 1

‎09-09-2013 01:54 PM - edited ‎07-04-2021 12:47 AM

Hi, there.

I'm trying to set up the Cisco autonomous AP (2600i) with multiple authentication.

It will broadcast two ssid (Guest & users) and for guest, WAP2 personal is setup while user ssid will need to authenticate end users through Radius.

I've got the WPA2 all configured and working. However, I'm having little difficulty on getting the Radius authentication to work.

Initially, I had it set up on Windows 2008 and since I had trouble, I was trying to set up the local AP Radius.

I had set up open with EAP, no encryption vlan cipher for user ssid.

Also got the local radius set up

However, when I did that, both the guest and user ssid does not work properly.

Is multiple types of authentication not supported on Autonomous AP?

Also what does the end user will see if let say I got this configured properly?

Does the user suppose to see the login prompt?

Anyone got any documentation link or help will be much appreciated.

Thanks alot~

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎09-09-2013 02:42 PM

You can have one secure said and another open or secure using psk if you want. How familiar are you with radius? Because that is where it becomes tricky if you don't know it. You also need a certificate on the radius server.

Take a look at these links as it will show you how to setup the secure ap.

http://blog.laurence.id.au/2010/03/running-peap-with-cisco-aeronet-1231g.html?m=1

http://targetcisco.blogspot.com/2011/03/cisco-autonomous-access-point.html?m=1

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801bd035.shtml

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎09-09-2013 02:42 PM

You can have one secure said and another open or secure using psk if you want. How familiar are you with radius? Because that is where it becomes tricky if you don't know it. You also need a certificate on the radius server.

Take a look at these links as it will show you how to setup the secure ap.

http://blog.laurence.id.au/2010/03/running-peap-with-cisco-aeronet-1231g.html?m=1

http://targetcisco.blogspot.com/2011/03/cisco-autonomous-access-point.html?m=1

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801bd035.shtml

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
Thomas Park
Level 1
Level 1
In response to Scott Fella

‎09-09-2013 07:22 PM

I've got mine working.

BTW I got it working with client not trusting the server certificate.

Couldn't get the WPA2-Enterprise with trusting the self-signed server certificate.

Anyway, Thanks alot, Scott.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to Thomas Park

‎09-09-2013 07:34 PM

What you really want to do is bring up a Windows 2008 NPS server and if you have a Windows 2008 CA, you can issue a certificate to that radius server.  This way your domain devices will trust that certificate.  Or you can purchase a 3rd party trusted root CA 5 year cert for around 200 bucks and install that on the radius server.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card