Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
410
Views
0
Helpful
2
Replies

EAP-TLS SSO

LUIGI PIETRONAVE
Level 1
Level 1

‎01-22-2007 05:24 AM - edited ‎07-03-2021 01:30 PM

Hi,

I would need some informations about Single Sign On. My implementations is:

- WLC4400 ( 2 devices )

- EAP-TLS as authentication type

- IAS over win2003 as radius

I just need to know how to implement SSO. I know it's "Microsoft" dependent as the controller forwrd all radius request to IAS, but:

If I want to configure the autoenrollment for the certificates, the wifi user must logon the domain the first time in WIRED, to let the autoenrollment process to download the certificate ? Or the certificate is "autoenrolled" via wifi also for the first time a user try the logon by EAP permitted traffic ?

many thanks and regards

luigi

Labels:
0 Helpful
2 Replies 2

with_joerg
Level 1
Level 1

‎01-26-2007 08:25 AM

Luigi,

we are running the WiSM (which is similar to a WLC) and I am looking for some information on setting up EAP/TLS. Can you send me some information pls?

--Joerg

0 Helpful

LUIGI PIETRONAVE
Level 1
Level 1
In response to with_joerg

‎01-29-2007 05:37 AM

Hi Joerg,

which informations do You require ?

Here an useful link from CCO;

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a00807917a6.shtml

in this link the authentication server is a Cisco ACS; if You want to use a Microsoft Radius ( IAS ) You need to know:

- for certificate autoenrollment the IAS must be a win2003 enterprise

- for to be a CA, the win2003 ( or win2000 ) must be a primary domain controller

Regards

Luigi

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card