Re: Security configuration on WLC

satish Chowdary · ‎01-08-2013

HI,

I have cisco 2504 WLAN controller with 7.4 IOS. My query is can I configure the MAC authentication with certificate based. And without using any external servers like Radius, ACS and LDAP.

May I know, If there is a option on WLC…

Regards,

Satish.

Chris Illsley · ‎01-08-2013

No you can't becuase you need an external server to vlidate the certificate.

Thanks

Chris

Edit: You can put a list of allowed MAC addresses though.

satish Chowdary · ‎01-08-2013

thats fine..

Atleasrt can i configure the WLC as a local RADIUS server... so that i can integrate the local user data base with RADIUS. Local data base will be stored in WLC only.

Scott Fella · ‎01-08-2013

You can use the local EAP on the wlc.

The Local EAP server will support the following:
- LEAP
- EAP-FAST
- EAP-TLS
- PEAP MS-CHAPv2

All user credentials will need to be entered on the WLC. It's better to use a radius server in my opinion that is tied to AD. This way you don't have to manage a large amount of user credentials.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Amjad Abdullah · ‎01-08-2013

I Agree. a certificat check can not be done on the WLC. It needs a thirt party server.