Белая книга для Cisco Cisco 2125 Wireless LAN Controller
Configure Unified Wireless Network for Authentication Against Novell's eDirectory Database - Cisco Systems
http://kbase/paws/servlet/ViewFile/112137/novell-edirectory-00.xml?convertPaths=1#related[10/7/2010 11:21:40 AM]
9. To complete the Local EAP Authentication configuration, configure the WLAN for Local EAP authentication using the LDAP server:
a. Choose
Local EAP Authentication Enabled and apply the created EAP Profile (eDirectory).
b. Under the LDAP servers, choose the IP Address of the configured eDirectory server (
192.168.3.3).
Figure 17
Client Configuration
PEAP-GTC is the current authentication requirement for the majority of the K-12 schools. WLC does not support MSCHAPv2 for Local EAP
Authentication. As a result, you must choose GTC for the EAP Authentication type on the client.
Authentication. As a result, you must choose GTC for the EAP Authentication type on the client.
The following figures are a walkthrough of the Cisco Aironet Desktop Utility configuration for PEAP-GTC to connect to the WLAN SSID Novell. Similar
configurations are achieved with the native Microsoft client with PEAP-GTC support.
configurations are achieved with the native Microsoft client with PEAP-GTC support.
1. Configure the Client Profile Name and SSID (Novell).
Figure 18
2. Choose
WPA/WPA2/CCKM for Security and PEAP (EAP-GTC) for the EAP type.
Figure 19