Cisco Cisco 2000 Series Wireless LAN Controller Manual Técnico
Complete these steps in order to implement this configuration:
Configure EAP-FAST as Local EAP Authentication Method on the WLC
Configure LDAP Server
Configure Wireless Client
Configure EAP-FAST as Local EAP Authentication Method on the WLC
As mentioned earlier, this document uses EAP-FAST with certificates on both the client and the server side as the Local EAP
authentication method. The first step is to download and install the following certificates to the server (WLC, in this case) and the
client.
authentication method. The first step is to download and install the following certificates to the server (WLC, in this case) and the
client.
The WLC and the client each need these certificates to be downloaded from the CA server:
Device Certificate (one for the WLC and one for the client)
Root Certificate of the Public Key Infrastructure (PKI) for the WLC, and CA Certificate for the client
Generate a Device Certificate for the WLC
Perform these steps in order to generate a device certificate for the WLC from the CA server. This device certificate is used by the
WLC to authenticate to the client.
WLC to authenticate to the client.
1.
Go to http://<IP address of CA server>/certsrv from your PC which has a network connection to the CA server. Log in as
the administrator of the CA server.
the administrator of the CA server.
2.
Select Request a certificate.
3.
In the Request a Certificate page, click advanced certificate request.