Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
726
Views
0
Helpful
4
Replies

LEAP and Microsoft active directory group policy objects

slebaron
Level 1
Level 1

‎12-14-2004 06:02 PM - edited ‎07-04-2021 10:15 AM

Background:

Cisco Aironet 1230A access points

Cisco WLSE

Cisco ACS

Cisco PCMCIA Wireless Adapters in laptops with LEAP authentication

Microsoft Active Directory

Computer-Based GPOs not processing

Problem:

Because LEAP requires the user to log on to the computer/domain before it will place the computer on the network, the computers will not get Computer-based GPOs. GPOs are a feature of Microsoft Active Directory to control settings on the computers and users. User GPOs process with no problems. The computer GPOs will not process or run because the computer is never on the network until the user logs in, by that time it is too late to process the computer-based GPO. We investigated the problem with Microsoft but it is felt that the LEAP authentication it stopping the computers from processing any scripts or GPOs when the computer starts up.

Things that we have tried but still fails:

There is a setting on the client to have it log on with a username. This does log the computer onto the network prior to the user logging on but, it is still not soon enough for the Computer-based GPOs to process.

Suggestions and/or Questions:

Is there a way with LEAP to have the computer logon to the wireless network fast enough for Computer-based GPOs to process and run? We feel that Cisco would have to have addressed this problem with Microsoft at some point in time.

Labels:
0 Helpful
4 Replies 4

dotcommadmin
Level 1
Level 1

‎12-21-2004 11:01 AM

I am also interested in any answers, just wanted to bump this ttt.

0 Helpful

o-ziltener
Level 1
Level 1

‎09-15-2005 02:03 PM

Hello

did you get a final answer to fix this?

best regards

Oliver

0 Helpful

htejeda
Level 1
Level 1

‎05-15-2006 06:57 AM

Has a solution been found for this?

0 Helpful

avilt
Level 3
Level 3
In response to htejeda

‎06-12-2006 05:12 PM

May be you can try SECEDIT /REFRESHPOLICY command in the login script.

http://support.microsoft.com/?kbid=227302

Thanks

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card