Welcome to Cisco Support Community. We would love to have your feedback.
For an introduction to the new site, click here. And see here for current known issues.
I can configure "RSA Secure ID" or "Token" ti authenticate users in a WLAN in the Wireless LAN Controller 5500 series?
That is possible??
Yes, it is just like for any other WLC model http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a008090399a.shtml
Which Layer 2 security is necesary to enable the RSASecurity?
It would have to be 802.1x or WPA or WPA2 with 802.1x key management.
We are testing this type of Authentication our components are:
1.- Wireless LAN Controller 5508
2.- LAP 1141
3.- RSA Authentication Manager 6.1
We are don´t have External Radius serves as Cisco ACS.
We add the Managment IP Address of the WLC into "Radius Client" from the RSA Authentication Manager 6.1.
The configuration of the WLC is:
1.- Security / Radius / Authentication: IP Address of the RSA Authentication Manager.
2.- WLAN / Layer 2 Security : 802.1X / AAA Servers IP Address of the RSA Manager.
Configuration of the RSA Authentication Manager.
1.- RSA Authentication Manager > Add Agent Host > Network Address: Managment IP Address WLC
2.- In the RSA Client enter the same shared key entered in the WLC.
The WLAN show the prompt : Enter Username and Password when the user try to connect to the Wireless Network, the user enter the username/password and the authentication failed.
Is necesary the Radius Server ?
Yes, you will need some form of RADIUS server for this to work like ACS, MS IAS, Steelbelted, etc.