I work for a school system and we are currently entertaining the idea of BYOD. We have a Cisco 4404 controller and what I would like to do in order to prepare for BYOD is to create a wireless network that can be connected to with AD credentials. So basically, on any device, when users try and connect to this specific WLAN they will be prompted to put in their AD username and password to get access, that’s it, no other passwords. I will be using the Network Policy Server role in Server 2008 R2 as my radius server. Was looking for some help on how to actually set up the policy within NPS for this type of authentication. Also, on the controller side, am I basically just setting up the WLAN and then setting up the authentication server on the AAA Servers tab for security? Leave Layer 2 and Layer 3 tabs blank if I only want to use AD credentials?
Your best best is to use webauth in which the user will be forced to enter their AD credentials on the portal page. All you really need in you NPS policy is to change the service type to login. I wouldn't do any type of 802.1x unless you want to support those devices.
So in security > Layer 3 tab just select web auth and leave type as Authentication? Then as long as I have a AAA server defined the auth will look to that server to authenticate the user's AD credentials?
The devices we are looking to allow would be tablets, laptops, iphones, android phones. Will this setup work for all of these types of devices?
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...