Authentication via Active Directory

Answered Question
Mar 6th, 2010


We  got Wireless LAN Controller and 5 Access Point, its still not production.

We connect to AP using static WPA2, how can authenticate via Active Directory instead of WPA2.

We got Windows 2003 Domain Controller acting as DNS / DHCP



Correct Answer by Scott Fella about 6 years 11 months ago

Sure... just replied to that thread.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
saquib.tandel Sat, 03/06/2010 - 21:47

Thansk for replying.

I got Cisco ACS 4.2 and configured external database for Active Directory.

ACS is authenticating VPN users only.

Is there a document to have wireless user authenticate using ACS external database ( active directory 2003 )

Scott Fella Sat, 03/06/2010 - 22:41

You don't need that.... you would need the Cisco wireless card for that, but most of the cards out there support PEAP.  Depending on your wireless card, you can search for how to configure PEAP.  Here is one if you use windows.

saquib.tandel Sat, 03/06/2010 - 22:45

Many Thanks

We got 500+ users and unfortunately all dont use the same brand of laptop.

supporting users become difficult due this factor, any peice of software needs to be installed on laptop to have make support easier.

Software can be paid or free.

can u help with my other post guest internet access.

Scott Fella Sat, 03/06/2010 - 22:52

With that many, not having a standard issue or using windows GPO makes it hard.  You don't want to have to touch all of the machines.

rizwan.corvit Mon, 04/04/2011 - 00:37

Hello Man !

your provided documents and links are very effective. thank you guy for your help. right now i have to problem below listed,

I have Cisco aironet 1142n access point. I have no ACS / WLC

but want to authenticate end users 802.1x with Active directory 2003/2008 using RADIUS (IAS/NPS).

These APs are standalone. Please provide any configuration document

"How to authenticate end users with active directory using cisco 1142n Standalone (Without WLC/ACS)".

Thanks & Regards,

Rizwan Haider Siddiqui.

rizwan.corvit Tue, 04/05/2011 - 03:47

Thank you brother for your effective reply.

Could you please advise me that I have no ACS server Software / Hardware.

I have Windows 2003 / 2008, Cisco 1142n AP, IAS / NPS as RADIUS Server.

your provided document can fullfill above requirement ?

thanks you so much !!!!!!!!!!

dmantill Tue, 04/05/2011 - 07:59


Sure, it can be done with the IAS or NPS.

Use these other docuemts as reference for setting up the Microsoft side.

So irther if you use it as standalone or unified with a WLC this will help you.

Please rate the post if you found these useful.

dmantill Tue, 04/05/2011 - 21:14


You are welcome, and if you need any assitance do not hessitate to contact us back.

We will keep your contac information at hand if we need anything.

Have a good one!

EvaldasOu Fri, 03/16/2012 - 01:02

Hello guys

Can we use active directory authentication for stand-alone access points? Or we must have a controller?

saif.scorpio Sun, 09/30/2012 - 00:25


Can anyone please help me with this?I need to use active directory for web-authentication without any server using LDAP, I read the document on cisco website but it is still unclear to me that how to integrate the existing Active directory user database with LDAP for web-authentication.




This Discussion



Trending Topics - Security & Network