Need Help with Installing AP 1250

Unanswered Question

I am installing AP 1250 with wireless client authenticating to radius server running on MS ISA server.   The users are supposed to be authenticating with AD.  So far I have been running into problems and unable to get any user connected via Wireless LAN. 

I would like your feedback if the configuration is good on the AP. Do I need tweak it to work?   The plan is to install one and then install the rest of the 3 more APs in the infrastructure.   I would like to get the one up and running first.  

I would like any suggestion to enhance my configuration and design guidance.   Also need help for ISA configuration.

Config from AP

    !

    hostname cisco1-ap

    !

    aaa new-model

    !

    aaa group server radius rad_eap

     server 10.1.2.25 auth-port 1812 acct-port 1813

    !

    aaa group server radius rad_acct

     server 10.1.2.25 auth-port 1812 acct-port 1813

    !

    aaa group server radius rad_admin

    !

    aaa group server tacacs+ tac_admin

    !

    aaa group server radius rad_pmip

    !

    aaa group server radius dummy

    !

    aaa group server radius rad_mac

    !

    aaa authentication login default local

    aaa authentication login eap_methods group rad_eap

    aaa authentication login mac_methods local

    aaa authorization exec default local

    aaa accounting network acct_methods start-stop group rad_acct

    !        

  

    !

   

    dot11 ssid ABCD123

     authentication open eap eap_methods

     authentication network-eap eap_methods

     authentication key-management wpa

     guest-mode

     infrastructure-ssid optional

    !

    power inline negotiation injector installed

   !

   

    !

    bridge irb

    !

    interface Dot11Radio0

     no ip address

     no ip route-cache

     encryption mode ciphers tkip

     ssid ABCD123

     station-role root

     rts threshold 2312

     no dot11 extension aironet

     bridge-group 1

    bridge-group 1 subscriber-loop-control

     bridge-group 1 block-unknown-source

     no bridge-group 1 source-learning

     no bridge-group 1 unicast-flooding

     bridge-group 1 spanning-disabled

    !

    interface Dot11Radio1

    

    shutdown

    !

    interface FastEthernet0

     no ip address

     no ip route-cache

     speed 100

     full-duplex

     bridge-group 1

     no bridge-group 1 source-learning

     bridge-group 1 spanning-disabled

    !

    ip http server

    ip http authentication aaa

    no ip http secure-server

    ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag

    ip radius source-interface BVI1

    !

    radius-server attribute 32 include-in-access-req format %h

    radius-server host 10.1.2.25 auth-port 1812 acct-port 1813 key 0 XXX-XXX-XXX-X

    radius-server deadtime 5

    radius-server vsa send accounting

    radius-server vsa send authentication

    bridge 1 route ip

    !

    line con 0

    line vty 0 4

    !        

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion

Related Content