wesleyterry Fri, 06/22/2012 - 08:50
User Badges:
  • Bronze, 100 points or more

This looks a little dated but it is a how to on the Local EAP server in a WLC.

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a0080851b42.shtml


Document makes it look complicated when you start looking at Certificates and stuff, but its relatively straight forward to enable if you don't need trusted certificates.

Amjad Abdullah Sun, 06/24/2012 - 23:09
User Badges:
  • Red, 2250 points or more

Besides Wesley link I would suggest you look into the following link:
http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70sol.html#wp1172157


There are a few main steps to do to configure the local EAP with LEAP (supposing that WLAN is already created):

-  create local eap profile and choose it to support LEAP.

- choose local eap auth priority to point to your preferred location for credentials. The two options you have are local (if credentials stored locally in "local net users" (WLC GUI-> Security -> AAA -> Local Net Users), or LDAP if you have LDAP external DB configured).

- configure the WLAN to use local EAP for authentication. (WLAN GUI -> WLANs -> Your WLAN -> Security tab -> AAA Servers).


If you are using LDAP you need to configure this independently. You can find LDAP/Local EAP configuration example in this link:

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a008093f1b9.shtml


However, the link shows EAP-FAST configuraiton, you can just ignore all EAP-FAST configuraiton and configure LEAP instead.


Good luck.


Amjad

Actions

This Discussion