cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
566
Views
0
Helpful
4
Replies

Helpless on 802.1x

ixus75
Level 1
Level 1

Please advise me on what settings do I need on cisco ap 1200 (12.2(11)JA1 ) in order configure 802.1x to work on windows xp client (SP1). I have been meddling with the settings but no result. I get authentication failed on cisco 1200 event log. Please kindly help me on this

4 Replies 4

tcross3
Level 1
Level 1

There is a alot that you have to do to use 802.1x in general. You have to have a radius server, decide on eap-tls which uses digital certificates for clients and server or eap-mds which only requires server side certificates. You also have to setup encryption on the access point. 802.1x on windows xp is hit or miss on a good day and on a roaming wireless network I would not suggest it. take a look at;

first

http://www.cs.umd.edu/~mvanopst/8021x/howto/

second

http://www.cisco.com/en/US/about/ac123/ac114/about_cisco_online_exclusive09186a00800a5cab.html

Hope this helps

The AP i have is using 12.2 IOS. The document shown for configuration of the firmware is different. Please advise me. I have tried PEAP and EAP-TLS and both do not work. I hve documentation from Micrsoft.com. It is the same as the on http://www.cs.umd.edu/~mvanopst/8021x/howto/. Please advise me.

I found 3 links from cco on configuring 802.1x. I don't know what your network looks like so the first one is how to configure your routers if the 802.1x traffice must cross your network. Also there is the link for the ios version complete guide and the chapter on authentication.

routers + 802.1x (fyi)

http://www.cisco.com/en/US/products/hw/wireless/ps457

0/products_white_paper09186a00800a9e8e.shtml

ios guide

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_guide_book09186a0080184a76.html

Authenticaion

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_guide_chapter09186a00801d030d.html

is it mandatory that you use LEAP? thru that Radius server or would you be able to just use WEP, with the 128 bit key?

if you are not going to use that Radius Server and LEAP it would make it a ton easier.

Just set the SSID, IP, SUBNET MASK, and WEP KEY, and you should be good to go.

I've been using XP and been able to connect every time to my Radius server so there should be no problem there.

Review Cisco Networking for a $25 gift card