Authentication via Active Directory

Answered Question
Mar 6th, 2010


We  got Wireless LAN Controller and 5 Access Point, its still not production.

We connect to AP using static WPA2, how can authenticate via Active Directory instead of WPA2.

We got Windows 2003 Domain Controller acting as DNS / DHCP



I have this problem too.
0 votes
Correct Answer by Scott Fella about 5 years 2 weeks ago

Sure... just replied to that thread.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Scott Fella Sat, 03/06/2010 - 08:28

Do you have a Microsoft IAS or NAP (2008 Server so maybe not) radius server setup?  This way you can use WPA2/AES PEAP fro your encryption/authentication method.  Here is a link that explains the setup:

saquib.tandel Sat, 03/06/2010 - 21:47

Thansk for replying.

I got Cisco ACS 4.2 and configured external database for Active Directory.

ACS is authenticating VPN users only.

Is there a document to have wireless user authenticate using ACS external database ( active directory 2003 )

saquib.tandel Sat, 03/06/2010 - 22:39

Many Thanks.

Cisco Aironet Desktop Utility is it free or license.

Scott Fella Sat, 03/06/2010 - 22:41

You don't need that.... you would need the Cisco wireless card for that, but most of the cards out there support PEAP.  Depending on your wireless card, you can search for how to configure PEAP.  Here is one if you use windows.

saquib.tandel Sat, 03/06/2010 - 22:45

Many Thanks

We got 500+ users and unfortunately all dont use the same brand of laptop.

supporting users become difficult due this factor, any peice of software needs to be installed on laptop to have make support easier.

Software can be paid or free.

can u help with my other post guest internet access.

Correct Answer
Scott Fella Sat, 03/06/2010 - 22:49

Sure... just replied to that thread.

Scott Fella Sat, 03/06/2010 - 22:52

With that many, not having a standard issue or using windows GPO makes it hard.  You don't want to have to touch all of the machines.

rizwan.corvit Mon, 04/04/2011 - 00:37

Hello Man !

your provided documents and links are very effective. thank you guy for your help. right now i have to problem below listed,

I have Cisco aironet 1142n access point. I have no ACS / WLC

but want to authenticate end users 802.1x with Active directory 2003/2008 using RADIUS (IAS/NPS).

These APs are standalone. Please provide any configuration document

"How to authenticate end users with active directory using cisco 1142n Standalone (Without WLC/ACS)".

Thanks & Regards,

Rizwan Haider Siddiqui.

rizwan.corvit Tue, 04/05/2011 - 03:47

Thank you brother for your effective reply.

Could you please advise me that I have no ACS server Software / Hardware.

I have Windows 2003 / 2008, Cisco 1142n AP, IAS / NPS as RADIUS Server.

your provided document can fullfill above requirement ?

thanks you so much !!!!!!!!!!

dmantill Tue, 04/05/2011 - 07:59


Sure, it can be done with the IAS or NPS.

Use these other docuemts as reference for setting up the Microsoft side.

So irther if you use it as standalone or unified with a WLC this will help you.

Please rate the post if you found these useful.

rizwan.corvit Tue, 04/05/2011 - 21:08

thanks Man.

you are Great Man ! thank you

if you need any help from my end. kindly let me know. I am working with Cisco Gold Partner. /

dmantill Tue, 04/05/2011 - 21:14


You are welcome, and if you need any assitance do not hessitate to contact us back.

We will keep your contac information at hand if we need anything.

Have a good one!

EvaldasOu Fri, 03/16/2012 - 01:02

Hello guys

Can we use active directory authentication for stand-alone access points? Or we must have a controller?

saif.scorpio Sun, 09/30/2012 - 00:25


Can anyone please help me with this?I need to use active directory for web-authentication without any server using LDAP, I read the document on cisco website but it is still unclear to me that how to integrate the existing Active directory user database with LDAP for web-authentication.




Login or Register to take actions

This Discussion

Posted March 6, 2010 at 7:12 AM
Replies:17 Overall Rating:5
Views:23142 Votes:0
Tags: No tags.

Discussions Leaderboard

Rank Username Points
Scott Fella
Stephen Rodriguez
George Stefanick
Leo Laohoo
Manannalage ras...
Rank Username Points
Manannalage ras...
George Stefanick
Stephen Rodriguez
Scott Fella
Freerk Terpstra

Trending Topics - Security & Network