ldap ACS PEAP EAP-MSCHAPv2
Posted on 2014-03-18
Hi there !
I would like to know if there is a problem with a radius authentification with a Cisco ACS and PEAP (EAP-MSCHAPv2) using a Digicert wild card certificate ?
We are using cisco 5508 wifi controlers and a Cisco ACS 220.127.116.11, an Active directory 2012 and a Digicert wild card 2048bit.
And we are using the ldap fonction in the ACS.
In the ACS, Access Policies > Access Services > service-wifi-acs > Edit: "service-wifi-acs", Allowed Protocols, Allow PEAP. When I activate "EAP-MS-CHAPv2" ipads and androides are not working. And when I activate "EAP-MS-CHAPv2", I can't make Microsoft boxes work. I did try to activate all protocols with no success.
We are using a wpa2 enterprise, aes on the Cisco 5508 wifi controlers.
Any clues how to make work the radius/ldap with Microsoft boxes + ipads + androides ?
Thank you !