Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Bronze

Is it possible to use only Microsoft AD to authenticate phones via EAP-FAST/EAP-TLS?

It seems that most of the newer desktop phones that concern me don't support EAP-MD5 for 802.1x authentication. I'm interested in whether I can authenticate a phone that doesn't support EAP-MD5 via shared secret or its LSC using only Microsoft's AD and NPS. A solution using ACS isn't valid due to some design reasons. Using EAP-MD5 on the older phones was straight forward, but I haven't seen any information on authenticating phones via EAP-FAST/TLS without ACS integration. Is this possible? If so, is there documentation on how to implement it?

 

Thanks in advance!
 

Everyone's tags (1)
65
Views
0
Helpful
0
Replies
CreatePlease to create content