08-01-2013 10:27 AM - edited 07-04-2021 12:34 AM
We're using WLC 5508 controllers, primarily for Windows 7+ clients, and have had success with both certificate and username/password authentication against a Windows Server 2008 R2 radius server. Currently, users can use one authentication method or the other. Is there a mechanism in the 5508 which would require both certificate and username/password authentication rather than just one or the other?
Thanks!
Solved! Go to Solution.
08-01-2013 10:28 AM
No, that would be determined by the AAA server, not the WLC.
HTH,
Steve
------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
08-01-2013 10:42 AM
ISE should work. It's all in how you define the connection profile. There also may be some tweak you need to do on the cleint to make this a 'and' vs an 'or'
HTH,
Steve
------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
08-01-2013 10:28 AM
No, that would be determined by the AAA server, not the WLC.
HTH,
Steve
------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
08-01-2013 10:34 AM
Gotcha, thank you for the reply. Something like Cisco ISE then?
08-01-2013 10:42 AM
ISE should work. It's all in how you define the connection profile. There also may be some tweak you need to do on the cleint to make this a 'and' vs an 'or'
HTH,
Steve
------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
08-01-2013 10:46 AM
Thank you.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide