Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

C4402 and ACS5.2 for EAP-TLS

hi

I'm trying to set up ACS5.2 to authen my laptop clients with certs to an AD group.

The Cisco 4402 is successfully allowing them to the network on WEP. I now need to use EAP-TLS and certs to authen.

I"m struggling with the ACS5.2 config. I"ve worked thru added a CA cert, added it to the AD domain, now need to configured Athen Profiles and Access Services.

Any help with each stage would be greatly appreciated.

thanks

phil

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions

C4402 and ACS5.2 for EAP-TLS

Hi,

So you only need configuraiton on ACS side, right?

I think you need to move your thread to security Identity and AAA forum here: https://supportforums.cisco.com/community/netpro/security/aaa.

However, Here are some links that could be useful to you:

https://supportforums.cisco.com/docs/DOC-21679

https://supportforums.cisco.com/docs/DOC-24868

None of them show exactly EAP-TLS configuratoin, but the you can follow the PEAP configuraiton with AD then you modify your settings to allow EAP-TLS and configure the necessary certificates on both client and server.

If you still have any concern please ask. But if you move the thread to the security forums you may find more people ot help.

Good luck.

Amjad

Rating useful replies is more useful than saying "Thank you"
2 REPLIES

C4402 and ACS5.2 for EAP-TLS

Hi,

So you only need configuraiton on ACS side, right?

I think you need to move your thread to security Identity and AAA forum here: https://supportforums.cisco.com/community/netpro/security/aaa.

However, Here are some links that could be useful to you:

https://supportforums.cisco.com/docs/DOC-21679

https://supportforums.cisco.com/docs/DOC-24868

None of them show exactly EAP-TLS configuratoin, but the you can follow the PEAP configuraiton with AD then you modify your settings to allow EAP-TLS and configure the necessary certificates on both client and server.

If you still have any concern please ask. But if you move the thread to the security forums you may find more people ot help.

Good luck.

Amjad

Rating useful replies is more useful than saying "Thank you"

C4402 and ACS5.2 for EAP-TLS

You may find the folloiwng useful as well:

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_white_paper09186a008009256b.shtml

https://supportforums.cisco.com/thread/2154618?tstart=0

Rating useful replies is more useful than saying "Thank you"
1089
Views
0
Helpful
2
Replies
CreatePlease to create content