Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
1263
Views
0
Helpful
3
Replies
Highlighted
MayuranParanirupasingam3107
Beginner
Beginner
‎06-29-2020 10:45 PM
‎06-29-2020 10:45 PM

IEEE 802.1x AP authentication on Catalyst 9800 WLC

What is the default IEEE 802.1x AP authentication configuration on a Cisco Catalyst 9800 Series Wireless Controller ?

Labels:
0 Helpful
Reply
3 REPLIES 3
Highlighted
patoberli
VIP Advisor VIP Advisor
VIP Advisor
‎07-07-2020 04:11 AM
‎07-07-2020 04:11 AM

I think the default is disabled and don't use 802.1x on the LAN side.
0 Helpful
Reply
Highlighted
dal
Participant
Participant
‎01-07-2021 03:49 AM
‎01-07-2021 03:49 AM

I think I need to wake up this thread.

There is this guide: 
https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/b_wl_16_10_cg/802-1x-support.html#id_79044

But it only shows how to set up PEAP as authentication method.

But I want to use EAP-TLS, and that is only partially explained.

And what I don't understand is, where to upload the necessary certificates, both to the AP and to the WLC

 

Anyone?

 

Thanks.

0 Helpful
Reply
Highlighted
Ric Beeching
Rising star
Rising star
In response to dal
‎01-07-2021 07:23 PM
‎01-07-2021 07:23 PM

What are you trying to achieve here? Is it AP .1x authentication with the wired port or just .1x authentication with the WLC?

 

Either way you need to upload the certificates to the WLC which will act as a certificate enrollment proxy for the APs using SCEP.

 

Instructions are in this link to setup a new trustpoint on the WLC for this:

 

https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/16-12/config-guide/b_wl_16_12_cg/locally-significant-certificates.htmlhttps://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/b_wl_16_10_cg/802-1x-support.html#id_7905...

 

 

 

-----------------------------
Please rate helpful / correct posts
0 Helpful
Reply
Latest Contents
Cisco AP AIR-CAP702I-E-K9
Created by sahara101 on 02-18-2021 05:39 AM
0
0
0
0
 Hello Community, I have an issue where APs do not connect to the WLC. Connection is made over VPN. Until yesterday all 3 APfailed with below errors. We change the LAN connection to a cisco router and now one of the AP magically connected to the... view more
Wireless Config Analyzer Express v 0.5.9
Created by Javier Contreras on 02-15-2021 09:27 AM
3
15
3
15
Where to download Attached files on this post Alternatively, cloud version (only summaries) General information: New implementation for the WLC Config Analyzer. it is a new re-write of the application, with clean up and improved checks Support for IOS... view more
**New Episode** Cisco Champion Radio: S8|E6 Fastlane+ Optimi...
Created by aalesna on 02-09-2021 10:20 AM
0
0
0
0
Cisco Champion Radio · S8|E6: Fastlane+ Optimizes Network and Device Communication Cisco Fastlane+ is a co-developed solution with Apple that significantly improves the experience of any Wi-Fi 6 capable iPhone or iPad connected to a Cisco Catalyst 9130 A... view more
IOS-XE 17.4.1 Blog
Created by SAY on 01-26-2021 12:19 AM
1
10
1
10
We are pleased to announce the immediate availability of the IOS-XE release 17.4.1 for the Catalyst Wireless Controllers. The new code is now posted on the CCO and can be found at this link: https://software.cisco.com/download/home/286316412/type/28204647... view more
How to manually connect a Cisco WLC to Cisco DNA Center for ...
Created by Richard Jang on 01-14-2021 05:50 PM
0
15
0
15
Table of Contents   Overview The purpose of this document is to provide step-by-step instructions regarding how to connect your read-only Catalyst 9800 WLC or AireOS WLC with Cisco DNA Center for Assurance monitoring through manual configuration. I... view more
Content for Community-Ad