Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
484
Views
0
Helpful
1
Replies

Intel SUpplicant, TLS and Outer Identity

MICHAEL SCHROEDER
Level 3
Level 3

‎11-30-2009 06:46 AM - edited ‎07-03-2021 06:18 PM

Dear All, Customer has installed Cisco UWN/ACS/Backend MS Directory and user WPA2 with TLS Machine Auth and CHAPv2 as inner Method. In the Intel Supplicant i have to administer the "Roaming Identity". We tried User Domain Accounts, anonymous and User Accounts with Wildcards in it. Sometimes these seems to issue Problems. Can anyone tell me what is a good Practice for the outer/ roaming Identity? Thx in adv, Michael

Labels:
0 Helpful
1 Reply 1

Robert.N.Barrett_2
Level 4
Level 4

‎11-30-2009 07:12 AM

It really sort of depends on what you want others to be able to see.  The outer identity is sent in clear text over the air during the initial steps of EAP authentication.  In a world where you have a Microsoft or Cisco RADIUS server (IAS or ACS, respectively), and your client operating systems and wireless supplicants are up-to-date, you should be able to use "anonymous" without issues.  If you live in a MS Active Directory world, you definitely want to use either domain\userid, or "anonymous".

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card