Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
773
Views
5
Helpful
2
Replies

LAP2600 / 802.1X Supplicant / TLS Version

Jozef Cmorej
Level 1
Level 1

‎05-01-2019 10:10 PM - edited ‎07-05-2021 10:18 AM

Hello,

does anybody know if and how it's possible to configure a TLS version on a Lightweight Access Point 2600 (SW 8.3.143.0) when I want to enable an 802.1X Supplicant? I would like to disable TLS1.0 on the Radius server but have not found a way to force the Acess Point to get authenticated via TLS1.1/1.2.

When I disable TLS1.0 on the Radius, the AP failed to authenticate.

Thank you.

Labels:
2 Replies 2

Sandeep Choudhary
VIP Alumni
VIP Alumni

‎05-02-2019 03:07 AM

Dont know about Autonomous AP but if you are using WLC then you can use the command:

 

(WLC) >config network secureweb cipher-option high ?

disable Don't require TLSv1.2 for web admin and web auth.
enable Require TLSv1.2 for web admin and web auth.

 

(WLC) >config network secureweb cipher-option high enable

 

Once you enable, it should use only TLSv1.2

 

Regards

Dont forget to rate helpful posts

0 Helpful

Jozef Cmorej
Level 1
Level 1
In response to Sandeep Choudhary

‎05-02-2019 03:13 AM

Thanks for your reply.

But as far as I know, these settings are related only to the HTTPS web server running on the WLC.

In my scenario, a TLS tunnel is established between the AP 802.1X supplicant and the Radius server.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card