Need to move away from LEAP - What are the options
We currently leverage Cisco AP1200's in our infrastructure and LEAP. We also use ACS to check users to ensure they are in our authorized wireless group. Vista does not support LEAP and we therefore need to move to something else from an encryption perspective. What would be a solid recomendation understanding our current deployment of ACS, AD and AP's.
Re: Need to move away from LEAP - What are the options
I propose to use PEAP with MS-CHAPv2 as the inner method. With that you may authenticate using your Windows Username and password. You have to put a server certificate on the ACS server. Be sure, that your clients validate that certificate - they need the CA cert in the store to do so. If you don't have a CA, then let ACS generate a Self-Signed cert. With that option it's hard to implement server cert validation.
Long speed - just search for PEAP on Cisco and you'll find a few deployment and howto guides.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...