I realize that this has been discussed before, but I am still confused after reading through the forum.
My scenario is as follows:
Cisco ACS 3.2
Laptops with built-in 802.11b cards(non-cisco)
I want to use the windows XP driver with PEAP (MS PEAP), and not install some LEAP supplicant. I have integrated the ACS with the Win2000 AD and a RSA SecurID.
I would imagine that this is a fairly common scenario now as most laptops come with built-in 802.11 cards. I can't find any complete docs that describes how to set this up - only bits and pieces here and there.
Please, can somebody or Cisco moderator enlighten me on this ?
I would belive many people will agree with me that this should be a priority to get a sample config of this to:
I agree entirely. I too would like to do exactly the same, but as you say, documentation is patchy. In addition, I'd like to know whether the MS PEAP supplicant requires a second 'PEAP' login, in addition to the user's domain logon, as ideally, I'd prefer it to be transparent, as in our current LEAP implementation. Do the cards themselves need to support PEAP in any way, or will any card would providing the underlying OS supports PEAP?
You have to install the PEAP supplicant that comes with the Aironet ACU install utility, but you do not have to install the ACU in full.
IN your connection properties, you have to check 802.1x authentication and you need to check Authenticate as Computer. Then choose properites from the same page and check "Validate Server Certificate" and choose your CA from the drop down.
As for the server side of things, if you need more help, post again
I can get PEAP working with non-cisco cards no problem. The problem is with my cisco 352 cards I can get PEAP working with the XP client. If I install the Cisco supplicant it will still work but, as soon as you use ACU 6.2 the computer can no longer authenticate.
IntroductionHow to use the Wireless LAN Controller Configuration Analyzer (WLCCA)
Javier Contreras is a Senior Tech Lead for the Wireless Business Unit in Cisco, with over 2 decades of experi...
< PRE >
(#)For this reason being that : - application that doesn't use multicast, sends one copy of each packet ( data unit of traffic at layer 3 ) to each client (" who seeks the traffic ).- application that does use multicast, sends ...
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...