AP LDAP Agent Status

When LDAP has been specified as an external resource (as opposed to local access point RADIUS resources) to validate PEAP-MS-CHAP v2 authentication requests, user credentials and password information needs to be made available locally to successfully connect to the external LDAP server. Up to two LDAP Agents (primary and secondary external resources) can be defined as external resources for PEAP-MS-CHAP v2 authentication requests.

For more information on setting LDAP agents as part of the RADIUS server policy, see Configuring RADIUS Server Policy.

To view access point LDAP agent statistics:

  1. Select the Statistics menu from the Web UI.
  2. Expand the System node from the navigation pane (on the left-hand side of the screen). The System node expands to display the RF Domains created within the managed network.
  3. Expand an RF Domain node, and select one of it's connected access points. The access point's statistics menu displays in the right-hand side of the screen, with the Health tab selected by default.
  4. Select LDAP Agent Status from the left-hand side of the UI.

    The Statistics → AP → LDAP Agent Status screen is displayed in the right-hand pane.

    Click to expand in new window
    GUID-1A6489E8-5571-4E97-95E3-1888C10716C3-low.png
    The LDAP Agent Status screen displays the following:
    LDAP Agent Primary Lists the primary IP address of a remote LDAP server resource used by the controller or service platform to validate PEAP-MS-CHAP v2 authentication requests. When a RADIUS server policy's data source is set to LDAP, this is the first resource for authentication requests.
    LDAP Agent Secondary Lists the secondary IP address of a remote LDAP server resource used by the controller or service platform to validate PEAP-MS-CHAP v2 authentication requests. When a RADIUS server policy's data source is set to LDAP, this is the second resource for authentication requests.
    Message Displays any system message generated in the controller or service platform's connection with the primary or secondary LDAP agent. If there's a problem with the username and password used to connection to the LDAP agent it would be listed here.
    Status Displays whether the controller or service platform has successfully joined the remote LDAP server domain designated to externally validate PEAP-MS-CHAP v2 authentication requests.
  5. Select Refresh to update the screen's statistics counters to their latest values.