On Jul 31, 2006, at 8:58 PM, Mark Duling wrote:

> I know this is off-topic but I wonder what everyone else is doing for
> authentication because I've hit a roadblock with what I'd planned  
> to do.
>
> I'm trying to use a WiSM/CiscoSecure ACS/OpenLDAP (backend  
> authentication)
> arrangement for authentication using WPA2 protocol for wireless  
> access.
> Authentication using LDAP fails, but authentication using local
> CiscoSecure ACS username/passwords work fine.
>
> The CiscoSecure ACS docs say LDAP support does not include EAP- 
> MSCHAPv2,
> which is the only type of authentication PCs seem to be able to  
> do.  Maybe
> I'm missing something here.
>
> How are y'all authenticating to your LDAP databases in a Cisco
> environment?  Anybody using CiscoSecure ACS?
>
> Mark

Well, for CCA, we authenticate directly to Novell LDAPS, no middleman  
needed.  We also use FreeRADIUS for accounting.  Looking into  
FreeRADIUS + Novell for wireless and other misc. AAA stuff.

Michael Grinnell
Network Security Administrator
The American University