Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Authentication via Active Directory

Hello

We  got Wireless LAN Controller and 5 Access Point, its still not production.

We connect to AP using static WPA2, how can authenticate via Active Directory instead of WPA2.

We got Windows 2003 Domain Controller acting as DNS / DHCP

thanks

ST

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Silver

Re: Authentication via Active Directory

Sure... just replied to that thread.

-Scott
*** Please rate helpful posts ***
17 REPLIES
Hall of Fame Super Silver

Re: Authentication via Active Directory

Do you have a Microsoft IAS or NAP (2008 Server so maybe not) radius server setup?  This way you can use WPA2/AES PEAP fro your encryption/authentication method.  Here is a link that explains the setup:

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

-Scott
*** Please rate helpful posts ***
New Member

Re: Authentication via Active Directory

Thansk for replying.

I got Cisco ACS 4.2 and configured external database for Active Directory.

ACS is authenticating VPN users only.

Is there a document to have wireless user authenticate using ACS external database ( active directory 2003 )

Hall of Fame Super Silver
New Member

Re: Authentication via Active Directory

Many Thanks.

Cisco Aironet Desktop Utility is it free or license.

Highlighted
Hall of Fame Super Silver

Re: Authentication via Active Directory

You don't need that.... you would need the Cisco wireless card for that, but most of the cards out there support PEAP.  Depending on your wireless card, you can search for how to configure PEAP.  Here is one if you use windows.

http://articles.techrepublic.com.com/5100-10878_11-6148574.html

http://www.cisco.com/en/US/docs/wireless/technology/peap/technical/reference/PEAP_D.html

-Scott
*** Please rate helpful posts ***
New Member

Re: Authentication via Active Directory

Many Thanks

We got 500+ users and unfortunately all dont use the same brand of laptop.

supporting users become difficult due this factor, any peice of software needs to be installed on laptop to have make support easier.

Software can be paid or free.

can u help with my other post guest internet access.

Hall of Fame Super Silver

Re: Authentication via Active Directory

Sure... just replied to that thread.

-Scott
*** Please rate helpful posts ***
Hall of Fame Super Silver

Re: Authentication via Active Directory

With that many, not having a standard issue or using windows GPO makes it hard.  You don't want to have to touch all of the machines.

-Scott
*** Please rate helpful posts ***
New Member

Re: Authentication via Active Directory

Hello Man !

your provided documents and links are very effective. thank you guy for your help. right now i have to problem below listed,

I have Cisco aironet 1142n access point. I have no ACS / WLC

but want to authenticate end users 802.1x with Active directory 2003/2008 using RADIUS (IAS/NPS).

These APs are standalone. Please provide any configuration document

"How to authenticate end users with active directory using cisco 1142n Standalone (Without WLC/ACS)".


Thanks & Regards,


Rizwan Haider Siddiqui.

Silver

Re: Authentication via Active Directory

Here it is a configuration example of EAP with wep encryption if you want you can change the encryption and keymanagement to WPA or WPA2 and that will be it...

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801bd035.shtml

New Member

Re: Authentication via Active Directory


Thank you brother for your effective reply.


Could you please advise me that I have no ACS server Software / Hardware.


I have Windows 2003 / 2008, Cisco 1142n AP, IAS / NPS as RADIUS Server.


your provided document can fullfill above requirement ?


thanks you so much !!!!!!!!!!


Silver

Re: Authentication via Active Directory

Hi

Sure, it can be done with the IAS or NPS.

Use these other docuemts as reference for setting up the Microsoft side.

So irther if you use it as standalone or unified with a WLC this will help you.

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080921f67.shtml

Please rate the post if you found these useful.

New Member

Re: Authentication via Active Directory

thanks Man.


you are Great Man ! thank you


if you need any help from my end. kindly let me know. I am working with Cisco Gold Partner.


rizwan.haider@msn.com / rizwan.haider@corvit.com      www.corvit.com

Silver

Re: Authentication via Active Directory

Rizwan

You are welcome, and if you need any assitance do not hessitate to contact us back.

We will keep your contac information at hand if we need anything.

Have a good one!

New Member

Authentication via Active Directory

Hello guys

Can we use active directory authentication for stand-alone access points? Or we must have a controller?

Authentication via Active Directory

This document was generated from the following discussion: https://supportforums.cisco.com/docs/DOC-26234

Thanks,

Vinay Sharma

Thanks & Regards
New Member

Authentication via Active Directory

Hi

Can anyone please help me with this?I need to use active directory for web-authentication without any server using LDAP, I read the document on cisco website but it is still unclear to me that how to integrate the existing Active directory user database with LDAP for web-authentication.

Thanks

Saif

27488
Views
10
Helpful
17
Replies
CreatePlease login to create content