Sitemap

Amicuk Programming Answers

802.1X wirelss restriction on user authentication

-0001-11-30   Views:0

Advertisement

Hi, In the 802.1x wireless environment, I would like to know is there any method to control single user credential only able to be autheticated for one time, at any given time. Example: user ABC in domain XYZ.ORG authenticated via his/her desktop, th

Hi,
In the 802.1x wireless environment, I would like to know is there any method to control single user credential only able to be autheticated for one time, at any given time.
Example: user ABC in domain XYZ.ORG authenticated via his/her desktop, this is using user authentication method.
After this he/she not able to use the same username/password trying to get authenticate neither using any another PC/tablet/smartphone devices.
The motive is to prevent user using same user credential able sign-in after he/she made the authenticaiton at first place.
Meaning to say he/she only able to authenticate to single device, at any given time. Same user credential is not allow to be use for authenticate purpose on other device.
The components as below:
supplicant: Window 7, authentication method using PEAP/MSCHAPv2; Apple iPhone iOS version 5.x, 6.x
Authenticator: Cisco Wireless Controller 5800 Series on code version 7.2
Authentication server: Cisco secure server ACS 5.3
Identity Source : Microsoft server 2008 ADDS, single forest single domain.
Question:
01. What we can configure on WLC, or ACS to enable above mention requirement
Thanks
Noel

The replay answer
Advertisement
http://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/112175-acs51-peap-deployment-00.html

Go to See the other 2 answers

802.1X wirelss restriction on user authentication

Category:DefaultRelease time:-0001-11-30Views:130

Hi, In the 802.1x wireless environment, I would like to know is there any method to control single user credential only able to be autheticated for one time, at any given time. Example: user ABC in domain XYZ.ORG authenticated via his/her desktop, th[More]

802.1X wirelss restriction on User Login policies

Category:DefaultRelease time:2015-10-11Views:130

Hi all, Seeking some technical idea on Wireless 802.1x setup. Business requirement is: "User login policy: to limit the number of concurrent login by a single user only apply to one device at any given time. " There is no problem on PEAP/MSCHAPv[More]

802.1x wireless authenticaiton against RADIUS authenticator

Category:DefaultRelease time:2015-10-11Views:130

Hi all, Would like to check out some client side setting on Wireless 802.1x authenticaiton. Network setup is using - Cisco WLC 7.2 and AP3500, - ACS 5.3 - Microsoft Windows server 2008 hosting AD and CA services (same machine) - Client OS is Microsof[More]

802.1x eap-tls machine + user authentication (wired)

Category:DefaultRelease time:-0001-11-30Views:130

Hi everybody, right now we try to authenticate the machines and users which are plugged to our switches over 802.1X eap-tls. Works just fine with windows. You plug a windows laptop to a switchport and machine authenticates over eap-tls with computer[More]

Cisco ISE: 802.1x Timers Best Practices / Re-authentication Timers [EAP-TLS]

Category:DefaultRelease time:-0001-11-30Views:130

Dear Folks, Kindly, suggest the best recommended values for the timers in 802.1x (EAP-TLS)... Should i keep default all or change or some of them? Also, what do we need reauthentication timers? Any benefit to use it? Does it prompt to users or became[More]

ACS SE 4.2, 802.1x and certificates for machine authentication

Category:DefaultRelease time:-0001-11-30Views:130

I'm trying to figure out how to put this lot together, but dont know enough about ACS when used with an external CA. What I want to get working is: A PC with a machine cert gets connected to a switch running 802.1x. The switch uses EAP with .1x to qu[More]

Radius for 802.1x; Remote Access and Wireless authentication

Category:DefaultRelease time:-0001-11-30Views:130

Looking to use a single Radius platform for authenticating Remote, wired and wireless users and machines. Anyone with some experience with that use to share some lessons learns...Hello Richard, there is a previous post from a user who wants to add au[More]

WLC+LAP+ACS4.0 achieving 802.1x PEAP and MAC address authentication ?

Category:DefaultRelease time:-0001-11-30Views:130

How to configure WLC + LAP + ACS4.0, achieving username and password authentication and MAC address at the same timeThis might help with the PEAP: http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00807917aa.sh[More]

Time Capsule 802.11ac - SMBv1.5 and NTLMv1 authentication

Category:DefaultRelease time:-0001-11-30Views:130

2015 is coming... Why are protocols in Time Capsule so old? What about firmware update with SMBv2 and NTLMv2 support?Are your questions for Apple? If yes, you have posted on a forum of users.....just like you.....and it is extremely unlikely that any[More]

802.1x PEAP Machine Authentication with MS Active Directory

Category:DefaultRelease time:-0001-11-30Views:130

802.1x PEAP Machine and User Authentication with MS Active Directory: I have a simple pilot-text environment, with - Microsoft XP Client, - Cisco 2960 Switch, - ACS Solution Engine (4.1.4) - MS Active Directory on Win 2003 Server The Remote Agent (at[More]

802.1x Failed Authentication with WS-C3750G-24T

Category:DefaultRelease time:-0001-11-30Views:130

Hi, I have already set up a lab  comprising of  1x2950-24 switch, 2x3750-24T in stack mode and 2x MS Domain Controller with AD 2008 Servers and NPS enabled (Domain level 2008). I use NPS as a Radius Server. I am trying to test the 802.1x framework in[More]

Hot
I am currently typing this on my iPhone. After installing snow leopard this morning I am unable to connect to either safari or Firefox. Both come up with server errors and will not load the webpages. The Internet is still connected over wifi and I am [More]
Hi Iam getting error when i try to call a ejb method from servlet.Error is "com.netscape.server.eb.UncheckedException: unchecked exception nested exception is:java.lang.NullPointerException". I build the application and deployed it successfully. [More]
Last week I installed Windows 8, after that Photoshop Elements 11 quits every time after about half an hour. Is it a Windows issue or coincedence?Similar to your problem, but it crashes during launch, not after a period of use. I posted this at DPRev [More]
Can anyone help me? I am wanting to be able to zoom a pic when the mouse hovers over it. A sample can be viewed here. PLEASE HELP SAMPLE PAGEDurico, Zooming a single photo, button, etc. Is relatively straight forward. To use this example code, create [More]
I am not sure if this is an Outlook problem or a Blackberry problem, but I have a coworker that recently got a Blackberry and has synched it to their outlook email/calendar/contacts.  Today they came to me and said that the company name, and home add [More]
is there a Powershell script "out-there" that export and import all the user properties from the User Profile service Application - including their individual placement on the various sections (contact, basic, details etc), and also including th [More]
I have an HP Officejet 5510v printer connected to my airport extreme. My G4 Mini can connect and print fine. I have an Intel Powerbook that can see the printer listed as available under Bonjour, but I get a "Error -9672" problem connecting to se [More]
Hi! Is it possible to export contacts to C3-01.5 from google account as VCF file? I tried, but phone can't find the .vcf file from PC if I have opened folder there the file should be!?? It is very unhandy to enter all 350 contacts to Nokia manually. [More]
I have an Interactive Report Region on a page which I have automatically refreshing. I am doing this with the following block placed in the Region Footer: <script type="text/javascript"> <!--   setInterval("jQuery('#US_INTRADAY_IRR [More]
I'd like to have a method that (a) varies in each generation and (b) is called by a base-class master method responsible for calling each generation's version of the method in turn. I've tried pulling the Class objects for each generation's superclas [More]