I have a couple of questions about methods that can be used to authenticate an end user trying to access a WLAN.
1) In the Web authentication method, is it possible for an end user to use its own certificate in order to be authenticated? If yes, does this mean a customized web page has to be used?
2) Is it possible to have multiple authentication methods available (such as Web, VPN, 802.1x) and allow the end user to choose only one of them for authentication?
All answers (and related documentation) are appreciated in advance.
Here is the link.... hope this helps:
The certificate option under WebAuth allows you to change the original default Cisco certificate with a trusted CA certificate. When a user who's is associated to an said that requires Web Policy, he or she will get a certificate error page in which he or she has to accept the certificate before they get redirected to the WebAuth page. This is because on the user device, Cisco is not a trusted CA. Installing a 3rd party certificate allows users to bypass this the same way when you browse to a secure site. RapidSSL is hat I have used alot in the past. They issue a root ca certificate and not chained certificates. Even though 5.1 andnlater code supports chained certificates, it is much easier to jus obtain a root ca certifiate.
Just do a search on Cisco's site for 3rd party certificate.