10-23-2016 08:45 AM - edited 07-05-2021 06:01 AM
We need your support to solve CISCO Wi-Fi related problem of one of our valuable customer. As per requirement of our customer, certificate authentication (CA) will be done in WLC through active directory and this authentication process will be completed by creating radius server. The main requirement of our client is that their users who are under domain controller, need
10-23-2016 10:07 AM
You need to understand authentication when it comes to wireless. You mentioned domain user and not logging in. You can do this with domain computers and using EAP-TLS, however the company needs to have a root CA server that is domain joined, a radius server that is also domain joined and you need to push a GPO to push the certificates to all domain computers along with the SSID. This is how it works for all the vendors, not just Cisco.
If for example you don't push GPO and you want them to just click on an SSID, you have now created another step for a user. You can also use 802.1x that will use the users login but it's still best to push that out through GPO.
You will not find a controller that has a built in radius that ties into AD. You need to setup one.
-Scott
*** Please rate helpful posts ***
10-30-2016 08:49 PM
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: