We got Wireless LAN Controller and 5 Access Point, its still not production.
We connect to AP using static WPA2, how can authenticate via Active Directory instead of WPA2.
We got Windows 2003 Domain Controller acting as DNS / DHCP
Solved! Go to Solution.
Do you have a Microsoft IAS or NAP (2008 Server so maybe not) radius server setup? This way you can use WPA2/AES PEAP fro your encryption/authentication method. Here is a link that explains the setup:
Thansk for replying.
I got Cisco ACS 4.2 and configured external database for Active Directory.
ACS is authenticating VPN users only.
Is there a document to have wireless user authenticate using ACS external database ( active directory 2003 )
Take a look at this link.
You don't need that.... you would need the Cisco wireless card for that, but most of the cards out there support PEAP. Depending on your wireless card, you can search for how to configure PEAP. Here is one if you use windows.
We got 500+ users and unfortunately all dont use the same brand of laptop.
supporting users become difficult due this factor, any peice of software needs to be installed on laptop to have make support easier.
Software can be paid or free.
can u help with my other post guest internet access.
With that many, not having a standard issue or using windows GPO makes it hard. You don't want to have to touch all of the machines.
Hello Man !
your provided documents and links are very effective. thank you guy for your help. right now i have to problem below listed,
I have Cisco aironet 1142n access point. I have no ACS / WLC
but want to authenticate end users 802.1x with Active directory 2003/2008 using RADIUS (IAS/NPS).
These APs are standalone. Please provide any configuration document
"How to authenticate end users with active directory using cisco 1142n Standalone (Without WLC/ACS)".
Thanks & Regards,
Rizwan Haider Siddiqui.
Here it is a configuration example of EAP with wep encryption if you want you can change the encryption and keymanagement to WPA or WPA2 and that will be it...
Thank you brother for your effective reply.
Could you please advise me that I have no ACS server Software / Hardware.
I have Windows 2003 / 2008, Cisco 1142n AP, IAS / NPS as RADIUS Server.
your provided document can fullfill above requirement ?
thanks you so much !!!!!!!!!!
Sure, it can be done with the IAS or NPS.
Use these other docuemts as reference for setting up the Microsoft side.
So irther if you use it as standalone or unified with a WLC this will help you.
Please rate the post if you found these useful.
You are welcome, and if you need any assitance do not hessitate to contact us back.
We will keep your contac information at hand if we need anything.
Have a good one!
This document was generated from the following discussion: https://supportforums.cisco.com/docs/DOC-26234
Can anyone please help me with this?I need to use active directory for web-authentication without any server using LDAP, I read the document on cisco website but it is still unclear to me that how to integrate the existing Active directory user database with LDAP for web-authentication.