I have deployed WLC5508 with software version 7.4 at one of my clients office. There requirement is to have a SSID for the external users who will be working with the company. Some of the users will have their IDs on Active Directory, and some users who will be working for short time period, will not have IDs on Active Directory. Now, can I configure Dual authentication method on single SSID that, when a user with an AD ID tries to connect, he is authenticated through AD, and when a user without AD ID (but having a user ID created in Local Database of WLC) tries to connect, he is authenticated through local database.
As far as I am aware this is not going to be possible. Once you add RADIUS into the mix on the WLAN, it will take priority for 802.1x authentication. So the only time Local EAP Auth will come into play is if no RADIUS servers are found. This means all credentials will be submitted to the RADIUS and users that are not listed there will respond back with Access-Reject.
A more streamlined solution for this would be to use ACS as you can specify a local database and an AD external db. That way all RADIUS auth will flow through ACS to provide you the solution you are looking for.
How helpful was I? Don't forget to rate me when you have the chance!
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...