Hello
This is Cisco standalone AP's 802.1x WPA2 Enterprise configuration example.
Cisco SAP IP : 192.168.16.12
FreeRADIUS IP : 192.168.26.3
[802.1x Configuration Example]===============================
aaa new-model
!
aaa group server radius rad_eap
server 192.168.26.3 auth-port 1812 acct-port 1813
!
aaa group server radius rad_mac
!
aaa group server radius rad_acct
server 192.168.26.3 auth-port 1812 acct-port 1813
!
aaa group server radius rad_admin
!
aaa group server tacacs+ tac_admin
!
aaa group server radius rad_pmip
!
aaa group server radius dummy
!
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
!
aaa session-id common
!
!
dot11 ssid 1X-TEST
authentication open eap eap_methods
authentication key-management wpa version 2
accounting acct_methods
guest-mode
!
!
interface Dot11Radio0
encryption mode ciphers aes-ccm
ssid 1X-TEST
no shutdown
!
interface Dot11Radio1
encryption mode ciphers aes-ccm
ssid 1X-TEST
no shutdown
!
!
ip radius source-interface BVI1
radius-server attribute 32 include-in-access-req format %h
radius-server host 192.168.26.3 auth-port 1812 acct-port 1813 key PASSWORD
radius-server vsa send accounting
========================================================
Cisco SAP full configuration.txt
No comments:
Post a Comment