Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
608
Views
0
Helpful
5
Replies

Security issue with WLC 5520 and AD

mdjan
Level 1
Level 1

‎05-24-2017 12:54 PM - edited ‎07-05-2021 07:06 AM

Hello guys,

To facilitate all the employees to log on the company wireless, I enable 802.1x authentication to enable all persons which are in the Active directory to access wlan without additional authentication. Employee use their same credential to log on the domain to log on the WLAN. By doing this all the users are able to log on the WLC management interface.

How can I solve this issue because it cause a very big security issue?

Labels:
0 Helpful
5 Replies 5

jonathan.cuthbert
Level 5
Level 5

‎05-24-2017 02:16 PM

TACACS? 

Internal User Database on ISE?

ACL?

These are all options. 

There are lots of ways.  I am not really clear on your configuration, but something is amiss.

0 Helpful

mdjan
Level 1
Level 1
In response to jonathan.cuthbert

‎05-24-2017 02:23 PM

I use Active directory user with ISE and ACL.

I based my configuration on this file

Preview file
1849 KB
0 Helpful

jonathan.cuthbert
Level 5
Level 5
In response to mdjan

‎05-24-2017 02:54 PM

Apologies that I did not download your PDF.  Perhaps you were referring to this blog post:

https://mrncciew.com/2014/05/11/wlc-access-via-radius-ise/

0 Helpful

mdjan
Level 1
Level 1
In response to jonathan.cuthbert

‎05-24-2017 04:19 PM

yes that's right

0 Helpful

mdjan
Level 1
Level 1
In response to mdjan

‎05-24-2017 04:22 PM

yes that's right instead of using user created on ISE , I use those who are in my AD
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card