I have a WiFi environment with a WDS AP (local RADIUS) and about 10 infrastructure AP's. The WDS does LEAP authentication/fast roaming for the 7921G phones.
Now I have to build up a new SSID/VLAN with 802.1x/PEAP/MS-CHAP V2 (on IAS) authentication.
Unfortunately, each infrastructure AP can authenticate the client only when wlccp is deactivated.
Is there a way to use the WDS/LEAP as a local raduis and send Infrustucture authentications to it, but still send user authentications to the IAS?
The 7921G can't be authenticated on the IAS (security issue).