Solved

Cisco WLC security: best solution for authentication

Posted on 2009-07-01
5
671 Views
Last Modified: 2013-11-12
We have about 20 cisco wireless lan controllers in our environment, placed on different locations.
Today we broadcast two SSIDs, one with web-auth and one with WPA + WPA2+802.1X.
This is a ok solution, but we are now looking for a way to improve the security.
The perfect solution would be that we could install a certificate when we install the user computers, and that this was used to authenticate the user to the wireless network. We should also be able to distribute the certificate with a gpo setting or something like that as well, for old computers that wont be reinstalled for a while.
We also have to log all traffic with the users username, but I hope that it is enough that the user is in the domain and dont have to authenticate with credentials again when connecting to the wireless network (we use ISA server for logging).

Does anyone have a idea on how we can solve this?

Thanks in advance :)
0
Comment
Question by:evuhleye
  • 2
  • 2
5 Comments
 
LVL 12

Expert Comment

by:naykam
ID: 24791996
What server/AD environment you running?
0
 

Author Comment

by:evuhleye
ID: 25477467
We use active directory on windows 2008 server.
0
 
LVL 12

Expert Comment

by:naykam
ID: 26349155
Hi, I just saw no response on that, how did you go
0
 

Accepted Solution

by:
evuhleye earned 0 total points
ID: 26351988
I have solved this using win 2008 enterprise with network policy server.
As long as you have a CA-server, this is easy to solve using dot1x :)
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a step by step guide on how to create a basic PTP link using Ubiquiti airOS devices. This guide can be used on the following Ubiquiti AirMAX devices. Nanostation, Bullets, AirBridge, Nanobeam, NanoBridge to name a few. Please review …
For Sennheiser, comfort, quality and security are high priority areas. This paper addresses the security of Bluetooth technology and the supplementary security that Sennheiser’s Contact Center and Office (CC&O) headsets provide.  
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question