Re: IAS with Cisco Access point

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Here's the exact procedure, as documented by SBS MVP Owen Williams. I've been using this for a couple of years and it works great. If you have ISA, you need to turn off strict RPC compliance to get certificate auto-enrollment to work - not sure if that's in the doc or not.

Configuring Secure Wireless Network Access with Microsoft® Windows® Small Business Server 2003
http://home.comcast.net/~clearviewtc/


"Noncentz303" <Noncentz@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:00387696-E8E3-43CB-A4DA-A80516FFF099@xxxxxxxxxxxxxxxx
I was wondering if anybody has any information on configuring a wireless
network with WPA. I really dont want to use WEP on my network and Cisco
doesnt let me use WPA without a radius server.

Installed Certificate Authority
I installed IAS - created a wireless group and access policy
I then added my AP to the RADIUS Clients

I configured my Cisco AP's with EAP, WPA and Cipher/TKIP, the AP seems to
recognize IAS accordingly. Ive requested certificates from the server
successfully and it all went so smooth using:

http://www.ifm.net.nz/cookbooks/wpa_sbs2003/index.html

When I try to authenticate I get these errors

--------------------------------------------------------------
MS Event Log:

The description for Event ID ( 2 ) in Source ( IAS ) cannot be found. The
local computer may not have the necessary registry information or message DLL
files to display messages from a remote computer. You may be able to use the
/AUXSOURCE= flag to retrieve this description; see Help and Support for
details. The following information is part of the event:
admin@xxxxxxxxxxxxxxxx,
mccoysales.local/MyBusiness/Users/SBSUsers/Administrator, 10.10.0.151,
McCoyLVAP1, 0021.1b66.27c0, 0016.b64a.2dd9, McCoy LV Warehouse AP1,
10.10.0.151, Wireless - IEEE 802.11, 392, Use Windows authentication for all
users, %%2147483688, %%2147483685, Wireless Access Account, EAP, Smart Card
or other certificate, 16, %%4112.
---------------------------------------------------------------------------------
Cisco 1242AG: Station 0016.b64a.2dd9 Authentication failed
------------------------------------------------------------------------------------

Ive been trying all day to get this to work so that I can provide adequate
security for my network. Any help would be greatly appreciated

Thanks
Noncentz



.

Relevant Pages

  • IAS with Cisco Access point
    ... I was wondering if anybody has any information on configuring a wireless ... I really dont want to use WEP on my network and Cisco ... doesnt let me use WPA without a radius server. ...
    (microsoft.public.windows.server.sbs)
  • CCIE (written and lab ) resume CCNP, CCNA, MCSE, SANS
    ... technology and strategic business interests with a P&L mindset proven ... record of managing large-scale network engineering teams in a large ... Computer System Analyst ... MPLS technology and Cisco 7200, 3800, 2800 series routers, Catalyst ...
    (comp.dcom.sys.cisco)
  • Multiple Vulnerabilities in CISCO VoIP Phones
    ... This advisory is being released simultaneously with one from Cisco ... network without requiring multiple Ethernet drops). ... attacker could put this data to some use. ... malicious TFTP server which would provide ...
    (Bugtraq)
  • Re: Problem with RWW, can list computers/servers, cannot get logge
    ... > other RWW functionality including admining the companyweb. ... > When I browse to that FQDN and the certificate is presented for approval, ... >>> to which the network in connected. ... >>> connection might not be enabled or the computer might be too bust to ...
    (microsoft.public.windows.server.sbs)
  • [Full-Disclosure] Cisco Security Notice: Nachi Worm Mitigation Recommendations
    ... Cisco Security Notice: Nachi Worm Mitigation Recommendations ... Cisco customers are currently experiencing high volumes of network ... are from high volumes of 92 byte ICMP type 8 packets. ...
    (Full-Disclosure)