I am installing a Cisco WLC 2112 controller with 5 1142 Aironet WAPs. I have set up the network side of things but am having many questions regarding authentication. I wanted to understand how secure LDAP (Windows AD auth) is compared to IAS/NPS with Radius? Also how do the certificates work with both of these methods. Do I still need to install a root CA service if I want to use LDAP? Or is there a way to secure LDAP authentication without installing a CA server?
If anyone can help with this I have a few more general questions. Such as the recommended range of these 1142 WAP's, DHCP configuration, etc.
Thank you !