LISTSERV - CLEANACCESS Archives - LISTSERV.MIAMIOH.EDU

CLEANACCESS Archives

December 2007

CLEANACCESS@LISTSERV.MIAMIOH.EDU

	LISTSERV Archives
	CLEANACCESS Home
	CLEANACCESS December 2007

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: Posturing Without Authentication
From:	"Speight, Howard" <[log in to unmask]>
Reply To:	Cisco Clean Access Users and Administrators <[log in to unmask]>
Date:	Thu, 6 Dec 2007 15:23:51 -0500
Content-Type:	text/plain
Parts/Attachments:	text/plain (67 lines)

We are running SSO using LDAP authentication, works fine. Windows only,
must be using the agent, must login the domain, SSO is automatic after
meeting those conditions. For LDAP you should be running CCA 4.1.1, I
believe that is when the feature for using the domain name, rather than
a single server was added? We have converted the majority of our AP's to
WISM and are working on adding encryption via ACS in the near future.

Is there a white paper out there using CCA, WISM environment, ACS to
provide an encryption key for WPA or WPA2?

What are others doing?

-----Original Message-----
From: Cisco Clean Access Users and Administrators
[mailto:[log in to unmask]] On Behalf Of Hurlbert, Scott,
JIMS
Sent: Thursday, December 06, 2007 14:18
To: [log in to unmask]
Subject: Re: Posturing Without Authentication

I would be interested in a SSO opportunity as well

Scott Hurlbert
913-715-4052
913-907-5361
-----Original Message-----
From: Cisco Clean Access Users and Administrators
[mailto:[log in to unmask]] On Behalf Of Dennis Xu
Sent: Thursday, December 06, 2007 11:58 AM
To: [log in to unmask]
Subject: Re: Posturing Without Authentication

You can use wireless SSO with CCA. I can send a doc to you about this
offline.

Dennis Xu
Network Analyst(CCS)
University of Guelph
5198244120 x 56217


-----Original Message-----
From: Cisco Clean Access Users and Administrators
[mailto:[log in to unmask]] On Behalf Of Michael Simpson
Sent: December-06-07 11:20 AM
To: [log in to unmask]
Subject: Posturing Without Authentication

Is there a way to have the Clean Access Agent use credentials from an
802.1x supplicant (single sign on) or bypass the authentication and have
Clean Access provide posturing only on a specified subnet?  We are
setting up an encrypted wireless network that uses 802.1x for
authentication.  We use eDirectory with the Universal Password feature
enabled to allow the Microsoft supplicant to pull the encryption key
from eDirectory.  We want to provide this added layer of security for
our users without adding another login.

Thanks for any ideas,



Michael Simpson
Network Engineer
Utah Valley State College
[log in to unmask]
(801)863-8864

ATOM RSS1 RSS2

LISTSERV.MIAMIOH.EDU