Wireless Access

Reply
Occasional Contributor II
Posts: 42
Registered: ‎06-25-2013

EAP Token to Pass Current User Credentials for Authentication

We have our Controller Setup to leverage a direct LDAP to AD which required the use of the PEAP/GTC module one thing I am running into is how to pass credentials without the user having to enter them each time.  Currently when a user sets up a wireless profile it caches the credentials which once they change doesn't work.  Now with Windows 8 and beyond the option to un-check the password cache isn't as easy as in Windows 7.

 

  Is there any setting similar to the EAP MSCHAP where when connection automatically use Windows Logon and Password and any Domain Information if available?

Aruba
Posts: 233
Registered: ‎11-19-2009

Re: EAP Token to Pass Current User Credentials for Authentication

Computer part of Windows AD domain can have the wireless profiles pushed via GPO domain policy to take effect and get the info to the clients from windows server and cache the credentials.

Guru Elite
Posts: 8,794
Registered: ‎09-08-2010

Re: EAP Token to Pass Current User Credentials for Authentication

You need to use an inner method of MS-CHAPv2 to support machine
authentication.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Guru Elite
Posts: 21,587
Registered: ‎03-29-2007

Re: EAP Token to Pass Current User Credentials for Authentication

Unfortunately, it is not possible with PEAP/Gtc for it to populate the username and password of the user that is logged in automatically. PEAP Gtc is a workaround for users that are forced to use LDAP instead of a radius server, and the ability to configure GTC via group policy does not exist. The best long term thing to do is to use a radius server instead of LDAP.


#AirheadsMobile


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: