I am attempting to configure a 1231G to use PEAP Authentication. I am using Windows 2003 Server running IAS as my RADIUS Server. The AP has been configured and is communicating with the IAS Server, but all of the authentication attempts are rejected because the username always gets changed to "anonymous" somewhere in the process.
The AP is running IOS 12.3(2)JA2
Can anyone help me understand what is happening? I have attached a copy of my AP Config along with an entry from the IAS Log. Any advice would be welcome.
Only thing that I had to do is go into the domain accounts dial-in tab and change it from allow to deny.
Also, the cisco configs in this article don't work with mbssid, so I used a single ssid. I'm going back now and trying to figure out the whole mbssid / wlan thing. To tell the truth it's driving me nuts!
Re: Microsoft IAS and 1231G authentication failures
Thanks for the advice, I did get to the bottom of the issue. I discovered the same article on Tech Republic as LouisBHirst. One of the other Issues I ran into, since you mentioned Intel Proset is that the Intel(R) PRO/Wireless LAN 2100 3B adaptor has some problems with certain types of authentication. There is a lot of documentation floating around the net pertaining to issues this card has or has had with VPN. It seems to me that I have stumbled on some shortcomings with PEAP authentication. I never did get the ProSet utility to work with this card, but the Windows XP settings work perfectly. I have now had success using IAS and FreeRADIUS with a variety of client adaptors in the Lab.
The next step is to have the RADIUS server assign users to a predetermined VLAN once they have been authenticated. Who knows, perhaps then I'll get this mess onto a live network somewhere.
IntroductionHow to use the Wireless LAN Controller Configuration Analyzer (WLCCA)
Javier Contreras is a Senior Tech Lead for the Wireless Business Unit in Cisco, with over 2 decades of experi...
< PRE >
(#)For this reason being that : - application that doesn't use multicast, sends one copy of each packet ( data unit of traffic at layer 3 ) to each client (" who seeks the traffic ).- application that does use multicast, sends ...
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...