Solved: Cisco WLC 8.3 GUI/CLI access via LDAP/AD user and restrict with ACL

saleem pc · ‎03-07-2018

Hello,

We have WLC 8.3.133

Our customer come up with requirement to integrate with AD so only selected AD users can login to access Cisco WLC management. also to create ACL to allow only specific user subnet to access the WLC. Is these features possible with WLC ?

Flavio Miranda · ‎03-07-2018

Hi

This partially possible to do. You can determine which subnet can access the wlc by using CPU ACL under security tab.

However you can't validate management user against AD. The WLC can integrate with AD for wifi access when local EAP is deployed but not for management users.

What you can do instead is integrate a RADIUS server with AD and point the WLC to this RADIUS server. This way you end up validating management users against your AD database anyway.

-If I helped you somehow, please, rate it as useful.-

View solution in original post

Flavio Miranda · ‎03-07-2018

Hi

This partially possible to do. You can determine which subnet can access the wlc by using CPU ACL under security tab.

However you can't validate management user against AD. The WLC can integrate with AD for wifi access when local EAP is deployed but not for management users.

What you can do instead is integrate a RADIUS server with AD and point the WLC to this RADIUS server. This way you end up validating management users against your AD database anyway.

-If I helped you somehow, please, rate it as useful.-