Cisco AAA/Identity/Nac :: Wireless With ACS 5.2 And 3rd Party Access Point
Nov 15, 2012
I have windows 7 clients (supplicants), D-link access point (authenticator), Cisco acs 5.2 virtual appliance with evalution license (acts as authentication server - Radius server). I want to setup EAP authentication (PEAP) that users will be able connect to Wireless LAN with login-password. I've done some configurations, but I did not get any result. in ACS 5.2 I get this error message: 11014 RADIUS packet contains invalid attribute(s): RADIUS Request dropped.
how ISE support on third party LAN switch, if the requirement is doing 802.1X based flexauth.Refer to the diagram i attached; 01 topology.png
Concern 1: if the 3com switch with 802.1X feature, but still without the full feature to support FlexAuth, policy encforcement, DACL etc. In this kind of situation, will user still able to authenticate (using method PEAP-MSCHAP v2), but authorization just grant with permit any any?
Concern 2: Can i assume i authenticated the 3com switch using MAB? But this will cause endpoint with no 802.1X, am i right?
Concern 3: cisco switch C4507-E, loaded with IOS version Cat4500e-UNIVERSALK9-M, version 03.04 and Supervisor Engine :WS-X45-SUP7-E, is this platform is supported in Cisco TrusctSEC?
How would I bridge a wireless connection with a distance of 400 feet? Would twoAP1262N-A-K9 be able to make this happen? Or is there another wireless bridge that you all can think of?I would be connecting one AP1262 of off a 3750g switch and at the far end (400 ft aproximately) another AP1262N-A-K9.
I had a new AIR-AP1042N-N-K9 access point and I tried to convert it into lightweight mode with the image c1140-rcvk9w8-tar.124-21a.JA2.tar . I used all the methods but the AP is getting hanged at one position after decompressing the new IOS. The capture of the process is below: [code] After this I am getting the junk characters and everytime AP hangs at this position.
I've got a Cisco 1941 setup working fine for Cisco Anyconnect. Clients can connect to local resources fine. The issue I have is I need the remote clients to access a third party IP address but to do so they must do it through the VPN. At the moment only local resources are accessed across the vpn and if they need internet they use their own internet connection they are connecting with.I've added the below to make sure traffic going to the IP is going across the VPN.
How do I connect and configure my WAP54G wireless access point to my new Cable Modem? I have it connected to the modem but I cannot access it to configure it. It appears to be working but before I got the cable modem I had it connected to a router and it was set-up with a static IP address. With my new ISP, I no longer have a static IP address so I am trying to configure the WAP54G to use DHCP. Trying to access it thru the internet at 192.168.1.245 does not work.
I just bought an LG Bluray DVD player (BD390) which is unable to find the access point in my home network.My router is a WRT54G, ver. 2.2, running firmware: Ver.4.21.1. My home network uses high speed cable with two computers on the wireless network, all working with no problems.The router is on the second floor but the two computers and the new BD390 are on the first floor - about 35 feet away. I have the wirelss security set to none and use only the specific computer MAC addresses to allow connection to this network.
I found directions in the forum for a setup using the LG BD390 but with a different Linksys router. I changed the security to WPA (AES); the Beacon interval from 100 to 75; the Fragmentation Threshold from 2346 to 2304; and the RTS Threshold from 2347 to 2307. The DVD wireless connection still failed to find my network. There is a "Push button" connection feature on the BD390 setup which I tried, but the only "button" on the router I could find was in the basic wireless setting, a green icon for the wireless SSID setup. No connection was made there either.
The recommendation connection from the LG manual is for a network cable, but that would be over 50 feet and a real pain to connect, so I would prefer WiFi.
I have a WAP54g hardware version 1.0.I install de last firmware on this access-point but, this access-point reset automatic after a random time..It’s it possible to downgrade de firmware from this access-point?
Have a WRT320N router at one end of the house in the basement. Would like to boost signal to other end of the house. Which product should i use, an access point or a range extender? My house is also wired with Ethernet cable and I could plug the access point into an Ethernet port at the end of the house where the signal is weak.
I've got a AP WAP54G. I've managed to get into the configuration page and rename my router and set a WPA2-Personl password.
The issue I'm facing is that when me and my roomate try to connect to the router at the same time, it shows the laptop that connects second as one that has 'limited connectivity' and hence cannot use the internet. The 1st laptop however works fine! The settings for the router have all been left to default.
I'm not sure, but does this problem have anything to do with the fact that the router in configured with a static IP. If so, then there is another issure which is that whenever I try to change it from static to automatic/dynamic IP, the page fails and the router doesn't even get connected to the configuraion page(192.168.1.245) after that. The only way to get that page again is the reset the router.
Also I'm not able to directly get into the config page when I connect my router to my laptop via lan. I need to change the LAN IP to 192.168.1.x where x is >1.
What I want to do is the opposite of most configurations. I live on a small island with only one DSL connection. The modem is wired connected to a WAP54G Access point. To extend this access point want to use a WRT54G.
I'm using a WRT120N and have had no problems connecting most wireless devices, but a Nintendo DS and DSi owned by my family are unable to connect to the access point. My wireless security mode is disabled, network mode is set to mixed, SSID is the same as on the DS/DSi, Channel width is 20Mhz only, Standard channel is set to 6, but I tried using channel 1 and 11 without success, SSID broadcast is enabled.
I've tried every work-about I could find and always get the 51300 error code, and am at a loss as to what else I can try to get the devices to connect to the access point.
I have 3 E3000 Routers and would quality input regarding using 1 of the E3000 Routers connected to my Broadband Modem (Roadrunner) and would like to know how to configure the remaining 2 E3000 Routers to be hardwired to my main Router as Access Points located approximate segmented 1/3rd areas throughout my house which really is only 1800 Sq.Ft. in area. How to be configure these routers as access points as well as configuring the main router that will be connected to my broadband router. This is my first network to utilize streaming video, Internet Television Programs, Internet Radio, Accessing the Internet in all rooms of my house and outside the immediate adjacent patio area.
I have tried to find mib for my Linksys WAP54G acces point without succeed. Any body know how I could find it?? I want to program a software based on SNMP protocol. Is there some databses for mibs?
I'm trying to connect a few of my devices to the wireless internet at home.
1.Xbox 360 2.Galaxy Tab 10.1 3.My Touch 4g
All of them can recognize the the network they just will not connect. All my freq are good 2.4 or 2.5. WEP Key works no problem, just the minute I try to connect the galaxy tab and cell phone just says "remembered, secured with WPA/WPA2 PSK." The xbox when running the test connection fails as well.
I have two SSIDs on an Autonomous Access Point, that goes to a 2960 switch, that connects to a L3 3560. I have a vlan for admin/private internal access that uses the native vlan (1) and guest vlan (50). I have configured both and I am trying to get both to go out the same Internet connection.
I cannot get the guest access to access the Internet. It looks like my computer will go, but it just comes up saying no Internet access.All interfaces are trunking this vlan properly. I can communicate from the laptop to the 3560 but I just can't get to the Internet.
I have a 5500 controller that we use to manage our lightweight access-points. We have had complaints that the 'guest' vlan in the boardroom is not usable. Our guest vlan is in fact overloaded.
I went back to the original site survey and noticed that coverage for the room is not ideal so I would like to have a new lightweight access-point installed in the boardroom and somehow limit the access to it to only a few people.
I have ACS 5.2 running as a VM. I'm AD, then local authentication successfully for device access, but I want to define ACS user groups to restrict login. I don;t see any way to do this. If I use AD groups, they don;t show up as selection options on the policy screens, just the ACS locallyy defined groups.
having the same issue at work with an EnGenius EAP350 wireless access point. can't even get into the access point configuration login page. i've tried to connect both via ethernet cable direct and wirelessly, at the default ip address of 192.168.1.1, what else can i do to get into the configuration?
i have a wap 200 access point very good performing in strenght of wireless signal but also a big problem....i wish to configure it with a userid and a password but connecting my pc at the access point by ethernet cable found wiith access point and typing 192.168.1.254 to view welcome page of device and start configuration, nothing happens...it is "invisible" for my and others pc.
I recently purchased a WAP4410N and I have some problems getting it to work. I am on a 192.168.1 network so everything should be ready to go. I am unable to ping the default address 192.168.1.245 for the wireless. During the process of resetting the device I am able to ping it for a few seconds. I am able to see the wireless connection but I am unable to access it even though it is unsecured. All lights are on the device except the PoE light.
each time that for what ever reason my access point goes down(not that my access point resets by itself, if i have to move it), the setting in the vlan mapping resets to whatever my native vlan is, in this case 30.
have Cisco AIR-AP1252-AG-A-K9 Access Point and 5GHZ radios are not working but interface status showing is up and running but signal is very weak I think it's working through only internal antennas when i connect external antenna even the signal is very weak and i am using external antennas air-ant5135dw-r=. What is the exact problem of that 5ghz radios. I have tried through external antenna gain 9,11 and 27, and all i tested but not working.
I am trying to configure Cisco 887-W ISR but have hit a stumbling block when trying to configure the wireless access point- or at least the advanced features of the access point using the URL referenced in from the cisco GUI configuration utility (Cisco Configuration Professional ). I do recall previously reading a post which referenced a different URL.
I have TP Link Wireless Router i attached TP Link access with it. The problem is am unable to see the attached Access Point in the Router, so that i could see the other users who are connected with that AP. Internet through that access point is available for all the users.
I have a fairly large home (>5000 sq ft) with multiple levels and some "dead spots" in the extreme areas. I would like to have a fantastic wi-fi signal through the home for access to my home network for my family and internet for guests. I have Fios with a 50/20 mpm with a "g" router. I also have purchased 2 repeaters (ampedwireless.com) and installed 1. Recognizing that it appears to have created a different network, so this isn't what I want to do. Then I went back and purchased 2 access points. I need to have an "hardware solution" in my theater (basement) as well as in my bedroom (3rd floor).
I have a wireless access point I cannot determine the ip for, every thing I try to find it just gives me the ip of my router. I need to change the channel of the wireless access point itself, the router doesn't allow me to do that.
