Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
388
Views
0
Helpful
1
Replies

Question on dot1x authentication

Go to solution
hassan_si
Level 1
Level 1

‎01-18-2011 12:12 AM - edited ‎07-03-2021 07:41 PM

We have dot1x authentication for our wireless clients. we have WLAN setup where the client is associated with WLC and it sends the EAP request to AAA server for authetication. I want to know what would be the source IP address when it reaches AAA server. Is it management IP of WLC or interface IP of the SSID? please confirm

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
tfraij
Cisco Employee
Cisco Employee

‎01-18-2011 12:18 AM

Hello Mohammad,

the communication between WLC and radius is done using management interface of the WLC.

so if you go to AAA server , you add the AAA client ( WLC) using its management IP.

please refer to this link

http://tools.cisco.com/squish/D7453

""""""""""""""""""""""""""

Management Interface

The management interface is the default interface for in-band management  of the controller and connectivity to enterprise services such as AAA  servers. It is also used for communications between the controller and  access points. The management interface has the only consistently  "pingable" in-band interface IP address on the controller. You can  access the controller's GUI by entering the controller's management  interface IP address in Internet Explorer's or Mozilla Firefox's Address  field.

For CAPWAP, the controller requires one management interface to control  all inter-controller communications and one AP-manager interface to  control all controller-to-access point communications, regardless of the  number of ports.""""""""""""""""""

note: if link is not working please clear cookies and saved passwords from yoru browser.

Kind regards

Talal

==========
please rate answers that you find useful , and mark as answered - when it is :-) - so others can find it easily

View solution in original post

0 Helpful
1 Reply 1

Go to solution
tfraij
Cisco Employee
Cisco Employee

‎01-18-2011 12:18 AM

Hello Mohammad,

the communication between WLC and radius is done using management interface of the WLC.

so if you go to AAA server , you add the AAA client ( WLC) using its management IP.

please refer to this link

http://tools.cisco.com/squish/D7453

""""""""""""""""""""""""""

Management Interface

The management interface is the default interface for in-band management  of the controller and connectivity to enterprise services such as AAA  servers. It is also used for communications between the controller and  access points. The management interface has the only consistently  "pingable" in-band interface IP address on the controller. You can  access the controller's GUI by entering the controller's management  interface IP address in Internet Explorer's or Mozilla Firefox's Address  field.

For CAPWAP, the controller requires one management interface to control  all inter-controller communications and one AP-manager interface to  control all controller-to-access point communications, regardless of the  number of ports.""""""""""""""""""

note: if link is not working please clear cookies and saved passwords from yoru browser.

Kind regards

Talal

==========
please rate answers that you find useful , and mark as answered - when it is :-) - so others can find it easily

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card