Cisco WLC PEAP/MSCHAPv2 - unnecessary ldap lookups?
Ivan Kalik
tnt at kalik.net
Thu Sep 17 21:56:29 CEST 2009
> A few months ago I had posted this topic to the list, and unfortunately
> before I could work further on it I got pulled onto another assignment. I
> apologize to those that tried helping before. I modified my config per
> their recommendations, but still having the same problem....
>
> I am still having trouble with a WLC440x with WPA2-AES-PEAP-MSCHAPv2,
> freeradius and edirectory setup. Essentially, the ldap requests are
> taking 3-4 seconds to resolve. In addition, freeradius ends up doing in
> the neighborhood of 5-6 ldap lookups for each client trying to attach. I
> am unsure of why this is happening. Below is my configuration: (This is
> freeradius 2.1.6)
Do you need ldap in default authorize (ie. are you doing other methods
apart from peap)? You probably need it just in inner-tunnel virtual
server.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list