Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
487
Views
0
Helpful
3
Replies

WLC Single sing on with out PEAP

pandapritam
Level 1
Level 1

‎08-03-2009 04:25 AM - edited ‎07-03-2021 05:54 PM

I have

ACS (4.2)1113 series

2003 AD server and 4402 WLC

is there any way to integrate all this for single sign on process by adding computer on the ADgroup(wireless) . Note i don't have any certificate server and don't want to use any certificate in the network.

Help me out. need ur prompt reply

Labels:
0 Helpful
3 Replies 3

dancampb
Level 7
Level 7

‎08-03-2009 05:46 AM

You could use LEAP or EAP-FAST for the user authentication. Just point the ACS server to look to AD for the username/password validation. There isn't a machine authentication option with these EAP methods but they also don't need certs.

0 Helpful

pandapritam
Level 1
Level 1
In response to dancampb

‎08-03-2009 05:53 AM

I need machine authentication option. can i use peap without the certificate.

or

i want the users which are in wireless group in AD only access the wireless (this AD group inturn mapped with the ACS group)

0 Helpful

Robert.N.Barrett_2
Level 4
Level 4
In response to pandapritam

‎08-03-2009 07:18 AM

If your clients are running Windows with Wireless Zero Config, then you have the option in the PEAP settings to disable the server certificate check. With that check disabled, then the only thing the client needs is a user id and password (to check against AD).

The Intel ProSET client also allows you to disable the server certificate check. I do not know about other clients.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card