08-25-2003 09:40 AM - edited 07-04-2021 08:58 AM
hi,
is it posible to implement simple user/pass radius authentication between a cisco 352 and a non-cisco pcmcia card (say a lucent card)?
i just want this thing to use 802.1x-based eap authentication, but i have several non-cisco wireless cards. i read somewhere a long time ago that leap is cisco-proprietary, so...
i think i can use eap-tls, but i don't wanna deal with certificates.
anyone out there know a viable solution to my problem?
regards,
c.
10-21-2003 08:57 AM
Cisco supports numerous EAP types on the Access Point. For the client, you might see if Funk Software (http://www.funk.com/) or Meeting House software (http://www.mtghouse.com/) have a shim for the lucent client for LEAP or other EAP types. I believe they do, but not certain if they support the Lucent client.
10-22-2003 04:51 AM
It can also depend on what OS you are running. We are authenticating XP users with PEAP to our IAS servers. We are simply using their UN/PW that is in Active Directory.
If you have XP machines then you wont need the clients above. I believe you need SP1 on them since that is when the client was added.
All said, it is a pretty easy thing to setup.
Don Hickey
10-22-2003 07:23 AM
yeah, actually i think i got working, because i get authenticated, but...
dhcp is not passing through the ap. i read in the discussion forums that this is because 3rd party and xp supplicant is not supported in csacs3.1. it has to be 3.2.
anyone know this for a fact?
regards,
c.
10-27-2003 05:13 AM
That is true....
From:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs32/rnwin321.htm#1009618
PEAP support for Microsoft Windows clientsCisco Secure ACS 3.2 adds support for Microsoft PEAP supplicants available today for Windows 98, NT, 2000, and XP. The Microsoft PEAP supplicant supports client authentication by only MS-CHAPv2 compared to Cisco PEAP supplicant (available through Cisco Aironet wireless adapters) which supports client authentication by logon passwords or one-time passwords (OTPs). Unlike Microsoft PEAP supplicant, Cisco PEAP supplicant provides support for one-time token authentication and powerful extensibility of non-MSCHAP end-user databases such as LDAP, NDS, and ODBC. Cisco Secure ACS 3.2 will allow selection of Microsoft PEAP and/or Cisco PEAP from its EAP Configuration page. PEAP is an Internet draft standard in the IETF PPP working group.
Don
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide