08-09-2013 09:04 PM - edited 07-04-2021 12:37 AM
At one of my customer we have installed Cisco wlc 2504 and has been integrated with AD for authenticating the users. The windows server version is 2003. Now the wifi user is getting authenticated and is able to connect to the domain but the issue is that the group policies are not being pushed to the wifi users. If the same user connects through the wired network, the group policies are being pushed.
08-11-2013 07:53 PM
check this link
http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a008093f1b9.shtml
Jawad
08-11-2013 10:02 PM
Hi jawad,
First of all thanks for replying, but the issue still remains. The wireless users are authenticated by AD but the GPO is not pushed to them. When the same user connects through the wired network all the GPO is pushed.
08-22-2013 03:09 PM
What is the authentication mechanism you use? I am guessing its user-based PEAP.
What happens if after user successfully authenticates and gets authorized to WLAN - can he/she run the gpoupdate and get the policies?
Sent from Cisco Technical Support iPhone App
08-27-2013 03:11 PM
You're want to take a look into machine authentication
Steve
Sent from Cisco Technical Support iPhone App
08-30-2013 01:28 PM
Kindly follow the following link for the Group policy, complete step by step configuration
Server 2008/2012
cisco document (another explaining in detail the flow)
http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml
09-02-2013 05:57 PM
Please try the steps which is provided in the link. The link is on 2008 server setting but you can just verify the settings missing in you configuration for refrence.
09-03-2013 10:32 PM
The issue with user auth is that it does not online before the user logs in. GPOs are normally applied at boot. Since the user is not logged in during the bootup the computer is unable to download the GPO.
The workaround for this is to do "Computer + User" for authentication. the Computer's machine account to log in and download the GPO via wireless and the. Switch to the user account when the user logs in.
Note that the machine behavior changes from WinXP to Vista/7/8
Sent from Cisco Technical Support iPhone App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide