I'm trying to Configure EAP-FAST with WPA1 & 2 using AES or TKIP depending on the capabilities of the client hardware, using WLC4402 and ACS 4.0.1 Appliance. The customer wants to use the Active Directory (Windows Database) to allow the windows login Credentials to be used to connect to the WLAN. I've installed the remote agent on a seperate W2K server and as a result the ACS has visibility of the Domain. However the customers database is LDAP and eap-fast cannot auto-provision it's PAC's using this type of database.
What other options are there? Or do I need to use some other method? we don't want to go down the road of installing certificates on the network and clients if it can be helped.
I'm using the CSSC Supplicant on the clients.