I am a bit confused as to how RADIUS servers are selected in a WLC.
The Cisco Controller Docs AND built in WLC Help both are VAUGE.
For security, I was expecting a doc that would show the complete selection logic and defaults, so that
we can complete understand the selections available !!
My Question is :-
In a case where Network Users and WLANS use 802.1x in any form (i.e Static WEP+802.1x / 802.1x / WPA+WPA2 with 802.1x for key)
A. If I do not select any servers under WLAN->Security->AAA, but have RADIUS 17 servers defined
Then will the system cycle through the 17 servers that can be defined, but only those with NETWORK USER checked ?
B. If I select only 1 server under WLAN->Security->AAA and that server did NOT have the "NETWORK USER" option checked,
B1. Will the WLC use that server ?
B2. Will it stop looking for more servers if that is not found ?
B3. Will it then fallback to Local Net Users ? (Even if local EAP is not checked)
B4. Or Fallback to Local EAP if set?
C. Also what is the role of the 3 LDAP servers that can be selected on WLAN->Security->AAA ?
C1. Is it to limit the LDAP servers for Local EAP, which **HAVE** LDAP as one of the listed methods for user auth in the priority ?
C2. Or It it for Web Auth AND Local EAP ?