Wireless Access

 View Only

  • 1.  EAP Token to Pass Current User Credentials for Authentication

    Posted Jun 21, 2016 01:30 PM

    We have our Controller Setup to leverage a direct LDAP to AD which required the use of the PEAP/GTC module one thing I am running into is how to pass credentials without the user having to enter them each time.  Currently when a user sets up a wireless profile it caches the credentials which once they change doesn't work.  Now with Windows 8 and beyond the option to un-check the password cache isn't as easy as in Windows 7.

     

      Is there any setting similar to the EAP MSCHAP where when connection automatically use Windows Logon and Password and any Domain Information if available?



  • 2.  RE: EAP Token to Pass Current User Credentials for Authentication

    Posted Jun 21, 2016 01:44 PM

    Computer part of Windows AD domain can have the wireless profiles pushed via GPO domain policy to take effect and get the info to the clients from windows server and cache the credentials.



  • 3.  RE: EAP Token to Pass Current User Credentials for Authentication

    Posted Jun 21, 2016 01:46 PM
    You need to use an inner method of MS-CHAPv2 to support machine
    authentication.


  • 4.  RE: EAP Token to Pass Current User Credentials for Authentication

    Posted Jun 21, 2016 02:42 PM
    Unfortunately, it is not possible with PEAP/Gtc for it to populate the username and password of the user that is logged in automatically. PEAP Gtc is a workaround for users that are forced to use LDAP instead of a radius server, and the ability to configure GTC via group policy does not exist. The best long term thing to do is to use a radius server instead of LDAP.


    #AirheadsMobile


Related Content