11-01-2010 05:36 AM - edited 07-03-2021 07:21 PM
I want to Integrate Cisco WLC with Microsoft AD. I have got one documentation form Cisco Site , but it is not working.
Can any one please provide me any link or configuration documentation ?
user will get the IP address from WLC when the username and password gets velidated from existing Microsoft AD.
11-01-2010 06:59 AM
I assume you want to use local EAP against Microsoft AD.
As I know WLC can only work with a LDAP database but not Microsoft AD.
Refer to this document:
LEAP, EAP-FAST/MSCHAPv2, and PEAPv0/MSCHAPv2 are also supported, but only if the LDAP server is set up to return a clear-text password. For example, Microsoft Active Directory is not supported because it does not return a clear-text password. If the LDAP server cannot be configured to return a clear-text password, LEAP, EAP-FAST/MSCHAPv2, and PEAPv0/MSCHAPv2 are not supported.
11-01-2010 07:17 AM
Its.... Nice point Raul !!!
11-01-2010 07:16 AM
Nice point Arindam!!
Any RADIUS server in the middle will help you a lot to communicate with the AD.. so that u can use most of the things.. if not.. use LOCAL EAP-FAST..
11-01-2010 08:05 AM
Microsoft AD supported or not is the answer?
11-01-2010 09:16 AM
We cannot integrade AD directly without ACS (Radius) to the WLC.. there is only one option. that is to go for LDAP and The link posted by Raul in the begining of the thread will let us know the limitations..
Let me know how this answers your question.
11-02-2010 12:03 AM
In clear, integrating the WLC with the AD as LDAP database will limit you to the methods not containing "mschapv2". For example : peap-gtc, eap-fast-gtc and eap-tls.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: