- Bronze, 100 points or more
I have a basic PEAP configuration using a WLC 4402 with Secure ACS 5.4. ACS is using Active Directory as the identity source. One issue I've found is that any valid AD user can authenticate, including service accounts. I don't want this, since service account passwords are never changed and anyone with knowledge of those accounts can gain access to the Wifi Network.
How can I limit access to a certain group, say "Users"? Can this be done with AD as the source, or do I have to switch to LDAP?