Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
540
Views
8
Helpful
4
Replies

ssid authentication

suthomas1
Level 6
Level 6

‎11-18-2012 05:18 AM - edited ‎07-03-2021 11:04 PM

We have a core switch ( 3750 ) , a wireless lan controller , access points , DHCP/DNS/AD server.

Ssid's configured on the controller need to be authenticated with username & password, but the

database of authentication needs to be in a radius server connected to the same core switch as the

Wireless controller.

queries:-

1. is this authentication possible if the usernames are created on the radius server alone?

2. is this possible without the use of Cisco ACS?

3. is this possible if we just point the authentication on WLC to the radius IP address of the server?

thanks in advance for all inputs.

Labels:
0 Helpful
4 Replies 4

kcnajaf
Level 7
Level 7

‎11-18-2012 07:44 AM

Hi,

Please find the answer to your quiries as below.

1. is this authentication possible if the usernames are created on the radius server alone?

    Yes. You can have the username and password created on radius server or locally on WLC

2. is this possible without the use of Cisco ACS?

     Yes, You could achive radius authetication with out Cisco ACS. You many choose Microsoft IAS server or  FreeRADIUS      as radius server provide you are not using proprietary authetications methods line LEAP or EAP-FAST.

3. is this possible if we just point the authentication on WLC to the radius IP address of the server?

   Yes...That is right....

Regards

Najaf

Please rate when applicable or helpful !!!

Scott Fella
Hall of Fame
Hall of Fame

‎11-18-2012 07:55 AM

Just to add... You can't create local usernames on IAS or NPS radius. These have to tie into active directory. If this is an issue, just use local EAP on the WLC. This allows you to have the WLC function as a radius server also, but username and passwords must be entered on the WLC itself.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

suthomas1
Level 6
Level 6
In response to Scott Fella

‎11-18-2012 05:10 PM

How do we use local EAP on controller and how will it thus function as radius server.

any examples will be helpful..

0 Helpful

George Stefanick
VIP Alumni
VIP Alumni
In response to suthomas1

‎11-18-2012 05:16 PM

Here is an example

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a008093f1b9.shtml

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."Here

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card