5-35
Cisco Wireless LAN Controller Configuration Guide
OL-17037-01
Chapter 5 Configuring Security Solutions
Configuring LDAP
Step 12 In the Server Timeout field, enter the number of seconds between retransmissions. The valid range is 2
to 30 seconds, and the default value is 2 seconds.
Step 13 Click Apply to commit your changes.
Step 14 Click Save Configuration to save your changes.
Step 15 Follow these steps to specify LDAP as the priority backend database server for local EAP authentication:
a. Click Security > Local EAP > Authentication Priority to open the Priority Order > Local-Auth
page (see Figure 5-19).
Figure 5-19 Priority Order > Local-Auth Page
b.
Highlight LOCAL and click < to move it to the left User Credentials box.
c. Highlight LDAP and click > to move it to the right User Credentials box. The database that appears
at the top of the right User Credentials box is used when retrieving user credentials.
Note If both LDAP and LOCAL appear in the right User Credentials box with LDAP on the top
and LOCAL on the bottom, local EAP attempts to authenticate clients using the LDAP
backend database and fails over to the local user database if the LDAP servers are not
reachable. If the user is not found, the authentication attempt is rejected. If LOCAL is on the
top, local EAP attempts to authenticate using only the local user database. It does not fail
over to the LDAP backend database.
d. Click Apply to commit your changes.
e. Click Save Configuration to save your changes.
Step 16 (Optional) Follow these steps if you wish to assign specific LDAP servers to a WLAN.
a. Click WLANs to open the WLANs page.
b. Click the ID number of the desired WLAN.
c. When the WLANs > Edit page appears, click the Security > AAA Servers tabs to open the WLANs
> Edit (Security > AAA Servers) page (see Figure 5-20).
To Next Page
Loading...
Need help?
General
