802.1x authentication switch and AD

Unanswered Question
Apr 1st, 2009

Hello,

I want to know if Cisco has solved the problem (MD5) between ACS and Active Directory?? because I want to configure 802.1x in a switch and it will integrate with Active Directory (Data Base)

The Solution is:

Switch <--> ACS (Authentication)<--> AD (Data Base)

Also i want to know if exist any solution no NAC Appliance that can use 802.1x integrate with AD in switch infraestructure??

Best Regards

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
srue Thu, 04/02/2009 - 05:22

NAC appliance does not use 802.1x. They are independent of each other. I've never personally configured both for the same site so I wouldn't know what to expect if you did.

kherzog Thu, 04/09/2009 - 05:59

I have hit the same challenge, where I need to authenticate the users against AD and I don't want to use the local CiscoSecure Database in ACS. For hundreds of users, there is no way I'm going to manage a database in ACS for user access. I have to manage the users in AD. I opened a case with Cisco and MS-CHAP is not supported by Cisco ACS, as I was provided this URL link:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/3.3/user/guide/o.html#wpxref846

Additionally, I was directed to the URL: http://www.ciscotaccc.com/kaidara-advisor/security/showcase?case=K24308566

I'm so stuck...there has to be way to use IEEE 802.1x with an external database such as LDAP.

Alex Pfeil Wed, 04/15/2009 - 04:04

from what I am reading, it looks like you would set up the ACS as the radius server to authenticate to Active Directory. In this instance you still manage the users with Active Directory.

thanks,

Alex Pfeil

Actions

This Discussion