Welcome to Cisco Support Community. We would love to have your feedback.
For an introduction to the new site, click here. And see here for current known issues.
I would like to know the reason why ACS cannot support EAP-MD5 with Windows AD Database? I plan to implement 802.1x on Wired and choose EAP-MD5 as the EAP protocol.
I understand that IAS can be used to implement EAP-MD5 with Windows AD database provided the user account password stored as Reversable Encryption Password in the Domain Settings.
Why cant I do the same with ACS?
EAP-MD5 is the lease secure protocol. Industry support for EAP-MD5 is almost very minimal. It is used in combination with other EAP techniques.
This is the reason,
ACS is not designed to work in that way. And yes, it is the least favored, or now-a-days I guess no one uses EAP-MD5. Go for PEAP.