We are running SSO using LDAP authentication, works fine. Windows only, must be using the agent, must login the domain, SSO is automatic after meeting those conditions. For LDAP you should be running CCA 4.1.1, I believe that is when the feature for using the domain name, rather than a single server was added? We have converted the majority of our AP's to WISM and are working on adding encryption via ACS in the near future.
Is there a white paper out there using CCA, WISM environment, ACS to provide an encryption key for WPA or WPA2? What are others doing? -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Hurlbert, Scott, JIMS Sent: Thursday, December 06, 2007 14:18 To: [email protected] Subject: Re: Posturing Without Authentication I would be interested in a SSO opportunity as well Scott Hurlbert 913-715-4052 913-907-5361 -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Dennis Xu Sent: Thursday, December 06, 2007 11:58 AM To: [email protected] Subject: Re: Posturing Without Authentication You can use wireless SSO with CCA. I can send a doc to you about this offline. Dennis Xu Network Analyst(CCS) University of Guelph 5198244120 x 56217 -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Michael Simpson Sent: December-06-07 11:20 AM To: [email protected] Subject: Posturing Without Authentication Is there a way to have the Clean Access Agent use credentials from an 802.1x supplicant (single sign on) or bypass the authentication and have Clean Access provide posturing only on a specified subnet? We are setting up an encrypted wireless network that uses 802.1x for authentication. We use eDirectory with the Universal Password feature enabled to allow the Microsoft supplicant to pull the encryption key from eDirectory. We want to provide this added layer of security for our users without adding another login. Thanks for any ideas, Michael Simpson Network Engineer Utah Valley State College [EMAIL PROTECTED] (801)863-8864
