On Wed, Oct 5, 2011 at 11:14 PM, Leigh Jewell <[email protected]> wrote:
> I have just ugraded from ACS v4.2 to v5 so bear that in mind with my answer. > LDAP can be used to authenticate users on the WLC directly . WLC cannot talk > to AD and has to use ACS to authenticate users. ACS or any other RADIUS server linked to the AD. Very common case is Windows Server's own IAS or NPS service. > The scenario might be a WLC at a remote site with no redundant WAN link and > there is an outage. There is a Windows server on-site which contains a copy > of the user database. The WLC loses connectivity to the central ACS server > and can then fail over to local EAP and authenticate against the local > Windows server with LDAP. Or still use RADIUS against the local RADIUS Windows server if it's been configured. -Thomas _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
