802.1x authentication switch and AD

Unanswered Question
Apr 1st, 2009
User Badges:

Hello,


I want to know if Cisco has solved the problem (MD5) between ACS and Active Directory?? because I want to configure 802.1x in a switch and it will integrate with Active Directory (Data Base)


The Solution is:


Switch <--> ACS (Authentication)<--> AD (Data Base)


Also i want to know if exist any solution no NAC Appliance that can use 802.1x integrate with AD in switch infraestructure??


Best Regards

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
srue Thu, 04/02/2009 - 05:22
User Badges:
  • Blue, 1500 points or more

NAC appliance does not use 802.1x. They are independent of each other. I've never personally configured both for the same site so I wouldn't know what to expect if you did.

kherzog Thu, 04/09/2009 - 05:59
User Badges:

I have hit the same challenge, where I need to authenticate the users against AD and I don't want to use the local CiscoSecure Database in ACS. For hundreds of users, there is no way I'm going to manage a database in ACS for user access. I have to manage the users in AD. I opened a case with Cisco and MS-CHAP is not supported by Cisco ACS, as I was provided this URL link:


http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/3.3/user/guide/o.html#wpxref846


Additionally, I was directed to the URL: http://www.ciscotaccc.com/kaidara-advisor/security/showcase?case=K24308566


I'm so stuck...there has to be way to use IEEE 802.1x with an external database such as LDAP.

Alex Pfeil Wed, 04/15/2009 - 04:04
User Badges:

from what I am reading, it looks like you would set up the ACS as the radius server to authenticate to Active Directory. In this instance you still manage the users with Active Directory.


thanks,


Alex Pfeil

Actions

This Discussion