Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
391
Views
0
Helpful
1
Replies

802.1x authenticatio

hclisschennai
Level 1
Level 1

‎07-17-2009 11:31 PM - edited ‎03-09-2019 10:26 PM

Hi experts,

I need clarification in a fundamental concept.

Is it possible to configure 802.1x authentication without external AAA / ACS server.

If the username and password is configured in local device, is it possible to create 802.1x authentication without RADIUS server

Thanks in advance

regards,RB

Labels:
0 Helpful
1 Reply 1

didyap
Level 6
Level 6

‎07-23-2009 02:46 PM

WLC sends incorrect user name to RADIUS server when performing MAC authorization on MESH APs. From Configuration Guide and Release

notes:

http://www.cisco.com/en/US/docs/wireless/controller/5.2/configuration/guide/c52mesh.html#wp1578796

http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn4119235M.html#wp1004616

Both of them documents that the user name for AP1240, 1522, and

1524 are platform_name_string-Ethernet MAC address. The WLC

actually sends out MAC address of the AP to the RADIUS server

first. If the user name is not defined in the RADIUS server, the

WLC sends an access reject to the WLC. Then, the WLC uses

platform_name_string-Ethernet MAC address to the RADIUS server.

In a large MESH installation, some MESH APs fail to join. Change

the order of access request to platform_name_string-Ethernet

MAC address, MAC address (password lower case), and then

MAC address (password upper case)

Configure users with the MAC address of the AP in the external

RADIUS server

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents