Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Intel SUpplicant, TLS and Outer Identity

Dear All, Customer has installed Cisco UWN/ACS/Backend MS Directory and user WPA2 with TLS Machine Auth and CHAPv2 as inner Method. In the Intel Supplicant i have to administer the "Roaming Identity". We tried User Domain Accounts, anonymous and User Accounts with Wildcards in it. Sometimes these seems to issue Problems. Can anyone tell me what is a good Practice for the outer/ roaming Identity? Thx in adv, Michael


Re: Intel SUpplicant, TLS and Outer Identity

It really sort of depends on what you want others to be able to see.  The outer identity is sent in clear text over the air during the initial steps of EAP authentication.  In a world where you have a Microsoft or Cisco RADIUS server (IAS or ACS, respectively), and your client operating systems and wireless supplicants are up-to-date, you should be able to use "anonymous" without issues.  If you live in a MS Active Directory world, you definitely want to use either domain\userid, or "anonymous".