Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1176
Views
0
Helpful
1
Replies

Multiple EAP types mapped on to the single SSID

Muhammed Adnan
Level 4
Level 4

‎02-11-2018 12:19 AM - edited ‎07-05-2021 08:14 AM

Hello Experts, 

 

I could see that there's an option to map multiple EAP types on an EAP profile, which eventually gets assigned to a WLAN. 

What will be the order or precedence in which the client will then attempt the EAP-Types to try authentication?

 

Local EAP profiles.PNG

 

 

MApping EAP profile on WLAN.png

Labels:
0 Helpful
1 Reply 1

Ric Beeching
Level 7
Level 7

‎02-12-2018 03:59 AM

Hi,

 

These local profile will only apply if you are using the WLC as the Authentication Server (AS). Generally people use external servers such as Microsoft AD/NPS, Cisco ISE or Cisco ACS etc and the EAP type is determined there along with authentication.

 

However, if you are using local auth with these profiles, then I believe the client can choose to use any type of auth in that list and there is no hierarchy, the same as if you were using these profiles on your external server. In corporate environments this is often managed through profiles on the client e.g using a group policy in windows to push out a "EAP-TLS" only profile etc.

 

Ric 

-----------------------------
Please rate helpful / correct posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card