Hello all! I am trying to configure the 1200 AP for radius auth to IAS 2003 server. according to the event viewer it says that the AP is trying to login as domainname/Guest. How do i correctly configure the AP to auth to the radius server?
You are not going to be able to configure the AP to strip the domain name. This is set by the client. Depending on the supplicant you are using you might be able to configure it to not include the domain name.
Yes, that is what i did and when i look at the Server event logs, it gives the AP IP address and says "Guest" from the domain is trying to loogin. On the PC, i enter the username and password and domain name so i am not sure why it says "Guest" is trying to login. I can post the config file, i think, if you like?
ON IAS, he reason why the user is the AP is that you do not set condition by which the user should be identified as belonging the a certain windows group, s as the client is not identified, only the AP is seen.
Why I don't clearly get is he criteria you try to set as condition, could you explain them please ? From what I see, you use virtual, which is typically smething I use to authentication ssh sessions, and ^311$ which says to process Access-Request messages sent by RADIUS clients that are computers running the Microsoft Routing and Remote Access service... a bit confusing for me... so can you explain what condition you try to set ?
Oh BTW, in you client config, the client vendor should be Cisco and not radius standard...
Thats good to know that the AP config looks fine. I see what you are saying about the IAS policy but i have left the IAS config "default" (as it is when i installed it). We have a Juniper firewall that worked with the IAS default config so i thought the AP would too. Also, i used "user" instead of group in this policy and i am trying to use EAP/PEAP. So, i did make another IAS policy for "wireless" and in that policy, it does not have "virtual or ^311$. I will now test this and report back. Thanks for all your help and patience!
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...