Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
359
Views
5
Helpful
4
Replies

Simple deplyoment

mickyq
Level 1
Level 1

‎09-08-2016 04:10 AM - edited ‎07-05-2021 05:47 AM

Using WLC with ISE and AD I want to authenticate devices based on AD Domain Computers and authorise users based on a user AD group.

Can anyone point me in the direction of a document that will help with configuration.

Thanks

Labels:
0 Helpful
4 Replies 4

Sandeep Choudhary
VIP Alumni
VIP Alumni

‎09-08-2016 05:44 AM

Hi,

Then you need to implement 802.1x with PEAP:

Here are the basic guides:

http://pandaeatsbamboo.blogspot.de/2015/01/ise-13-vwlc-76-basic-8021x.html

http://www.labminutes.com/sec0186_ise_13_wireless_dot1x_eap-tls_peap_1

http://www.labminutes.com/sec0186_ise_13_wireless_dot1x_eap-tls_peap_2

Regards

Dont forget to rate helpful posts

0 Helpful

mickyq
Level 1
Level 1
In response to Sandeep Choudhary

‎09-08-2016 06:04 AM

Thanks for the reply Sandeep.

the first link is for configuring byod with a local DB, the other two are using certificates.

I need to use AD for the authentication and authorisasion.

Thanks

0 Helpful

Sandeep Choudhary
VIP Alumni
VIP Alumni
In response to mickyq

‎09-08-2016 06:13 AM

Above link will solve your problem.

1. Create SSID and assign your RADIUS server to SSID with AAA override function enabled

2. Join AD to ISE

3, Create Authentication and Authorization policy then you need to select a protocol by which you will authenticate client (simple is to use PEAP that required certificate only on ISE)

Regard

Dont forget to rate helpful posts

mickyq
Level 1
Level 1
In response to Sandeep Choudhary

‎09-08-2016 07:07 AM

ok, thanks Sandeep. I will give it a try.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card