Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3212
Views
0
Helpful
7
Replies

Cisco WLC 2504 and AD authentication

Shobhit Sinha
Level 1
Level 1

‎08-09-2013 09:04 PM - edited ‎07-04-2021 12:37 AM

At one of my customer we have installed Cisco wlc 2504 and has been integrated with AD for authenticating the users. The windows server version is 2003. Now the wifi user is getting authenticated and is able to connect to the domain but the issue is that the group policies are not being pushed to the wifi users. If the same user connects through the wired network, the group policies are being pushed.

Labels:
0 Helpful
7 Replies 7

Shobhit Sinha
Level 1
Level 1
In response to jawad-mukhtar

‎08-11-2013 10:02 PM

Hi jawad,

First of all thanks for replying, but the issue still remains. The wireless users are authenticated by AD but the GPO is not pushed to them. When the same user connects through the wired network all the GPO is pushed.

0 Helpful

vlad.mihailov
Level 1
Level 1

‎08-22-2013 03:09 PM

What is the authentication mechanism you use? I am guessing its user-based PEAP.

What happens if after user successfully authenticates and gets authorized to WLAN - can he/she run the gpoupdate and get the policies?

Sent from Cisco Technical Support iPhone App

0 Helpful

Stephen Rodriguez
Cisco Employee
Cisco Employee

‎08-27-2013 03:11 PM

You're want to take a look into machine authentication

Steve

Sent from Cisco Technical Support iPhone App

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

kaaftab
Level 4
Level 4

‎08-30-2013 01:28 PM

Kindly follow the following link for the Group policy, complete step by step configuration

Server 2008/2012

http://jackstromberg.com/2013/05/tutorial-802-1x-authentication-via-wifi-active-directory-network-policy-server-cisco-wlan-group-policy/

cisco document (another explaining in detail the flow)

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

0 Helpful

blenka
Level 3
Level 3

‎09-02-2013 05:57 PM

Please try the steps which is provided in the link. The link is on 2008 server setting but you can just verify the settings missing in you configuration for refrence.

http://jackstromberg.com/2013/05/tutorial-802-1x-authentication-via-wifi-active-directory-network-policy-server-cisco-wlan-group-policy/

0 Helpful

Jacob Snyder
Level 5
Level 5

‎09-03-2013 10:32 PM

The issue with user auth is that it does not online before the user logs in. GPOs are normally applied at boot. Since the user is not logged in during the bootup the computer is unable to download the GPO.

The workaround for this is to do "Computer + User" for authentication. the Computer's machine account to log in and download the GPO via wireless and the. Switch to the user account when the user logs in.

Note that the machine behavior changes from WinXP to Vista/7/8

Sent from Cisco Technical Support iPhone App

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card