Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1632
Views
0
Helpful
6
Replies

WLC integration with Microsoft AD

urarindam
Level 1
Level 1

‎11-01-2010 05:36 AM - edited ‎07-03-2021 07:21 PM

Dear All,

I want to Integrate Cisco WLC with Microsoft AD. I have got one documentation form Cisco Site , but it is not working.

Can any one please provide me any link or configuration documentation ?

Design :

user will get the IP address from WLC when the username and password gets velidated from existing Microsoft AD.

Regards,

Arindam

Labels:
0 Helpful
6 Replies 6

Raul Manzano Barroso
Level 1
Level 1

‎11-01-2010 06:59 AM

I assume you want to use local EAP against Microsoft AD.

As I know WLC can only work with a LDAP database but not Microsoft AD.

Refer to this document:

LEAP, EAP-FAST/MSCHAPv2, and PEAPv0/MSCHAPv2 are also supported,       but only if the LDAP server is set up to return a clear-text       password. For example, Microsoft Active Directory is not supported       because it does not return a clear-text password. If the LDAP server cannot be       configured to return a clear-text password, LEAP, EAP-FAST/MSCHAPv2, and       PEAPv0/MSCHAPv2 are not supported.

http://www.cisco.com/en/US/partner/products/ps6366/products_configuration_example09186a008093f1b9.shtml#backinfo

Best regards.

0 Helpful

Surendra BG
Cisco Employee
Cisco Employee
In response to Raul Manzano Barroso

‎11-01-2010 07:17 AM

oops sorry!!!!

Its....  Nice point Raul !!!

Regards
Surendra

Regards
Surendra BG
0 Helpful

Surendra BG
Cisco Employee
Cisco Employee

‎11-01-2010 07:16 AM

Nice point Arindam!!

Any RADIUS server in the middle will help you a lot to communicate with the AD.. so that u can use most of the things.. if not.. use LOCAL EAP-FAST..

Regards

Surendra

Regards
Surendra BG
0 Helpful

philipmoore
Level 1
Level 1
In response to Surendra BG

‎11-01-2010 08:05 AM

Microsoft AD supported or not is the answer?

0 Helpful

Surendra BG
Cisco Employee
Cisco Employee
In response to philipmoore

‎11-01-2010 09:16 AM

We cannot integrade AD directly without ACS (Radius) to the WLC.. there is only one option. that is to go for LDAP and The link posted by Raul in the begining of the thread will let us know the limitations..

Let me know how this answers your question.

Regards
Surendra

Regards
Surendra BG
0 Helpful

Nicolas Darchis
Cisco Employee
Cisco Employee
In response to philipmoore

‎11-02-2010 12:03 AM

In clear, integrating the WLC with the AD as LDAP database will limit you to the methods not containing "mschapv2". For example : peap-gtc, eap-fast-gtc and eap-tls.

Regards,

Nicolas

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card