Техническая Инструкция для Cisco Cisco AnyConnect Secure Mobility Client v2.x
Cisco Network Access Manager Profile Editor
•
The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
Background Information
These authentication methods are supported with LDAP:
Extensible Authentication Protocol Generic Token Card (EAP−GTC)
•
Extensible Authentication Protocol Transport Layer Security (EAP−TLS)
•
Protected Extensible Authentication Protocol Transport Layer Security (PEAP−TLS)
•
Configure
This section describes how to configure the network devices and integrate the ISE with an LDAP server.
Network Diagram
In this configuration example, the endpoint uses a wireless adapter in order to associate with the wireless
network. The Wireless LAN (WLAN) on the WLC is configured in order to authenticate the users via the ISE.
On the ISE, LDAP is configured as an external identity store.
network. The Wireless LAN (WLAN) on the WLC is configured in order to authenticate the users via the ISE.
On the ISE, LDAP is configured as an external identity store.
This image illustrates the network topology that is used:
Configure OpenLDAP
Installation of the OpenLDAP for Microsoft Windows is completed via the GUI, and it is straightforward. The
default location is C: > OpenLDAP. After installation, you should see this directory:
default location is C: > OpenLDAP. After installation, you should see this directory: