Hi,
Not using ACS, LDAP directly from the controller. When doing a debug aaa ldap. I get a successful response but the client will not authenticate, with or without certs validated. I know the PKI side is OK as the other methods work, including TLS. Regards Phil From: Silverline,Tim [mailto:[email protected]] Sent: 04 March 2011 15:25 To: Phil Priest; [email protected] Subject: RE: Local EAP-FAST LDAP ADU I have had this working. Uncheck validate server certificate or install the CA cert or user cert on the testing machine. What error are you getting? On ACS or client? Tim From: [email protected] [mailto:[email protected]] On Behalf Of Phil Priest Sent: Friday, March 04, 2011 6:03 AM To: [email protected] Subject: [CCIE Wireless] Local EAP-FAST LDAP ADU Hi All, Has anybody else got local EAP-FAST GTC working with the ADU and backing off to LDAP? All other combinations I try are working. EAP-FAST TLS, PEAP all backing off to LDAP work. I can also get EAP-FAST GTC working with a local user on the controller. The Cisco example uses EAP-FAST with TLS and there is no mention of using GTC so I am wondering if there is a bug with the ADU, I don't have a Windows 7 machine to hand to try it yet as per Jason's example in the workbook. http://www.cisco.com/en/US/products/ps6366/products_configuration_exampl e09186a008093f1b9.shtml Regards Phil
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
