https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5345219#M393 <P><A href="http://bizsupport2.austin.hp.com/bc/docs/support/SupportManual/c02858508/c02858508.pdf" target="_blank">http://bizsupport2.austin.hp.com/bc/docs/support/SupportManual/c02858508/c02858508.pdf</A></P><P><BR />Fixed issue&nbsp; in the 5.5.2 firmware</P><P><STRONG>RP ID: 57746</STRONG></P><P>Active Directory 802.1x authentication does not work when used with Windows Server<BR />2008-R2.</P><P>&nbsp;</P><P><STRONG>PR ID: 36881</STRONG></P><P>Active Directory Server 2008 logs a warning message when the MSM7xx joins the<BR />domain. However, it is still functional.<BR />The warning begins with the following text. “The security of this directory server can be<BR />significantly enhanced by configuring the server to reject SASL (Negotiate, Kerberos,<BR />NTLM, or Digest) LDAP binds that do not request signing (integrity verification) and<BR />LDAP simple binds that are performed on a cleartext (non-SSL/TLS-encrypted)<BR />connection. ...”<BR />For details, see: <A href="http://go.microsoft.com/fwlink/?LinkID=87923" target="_blank">http://go.microsoft.com/fwlink/?LinkID=87923</A></P> Tue, 27 Sep 2011 10:55:28 GMT Patrick R 2011-09-27T10:55:28Z https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/2336647#M19 <P>I have a customer who has set up a VSC on a MSM 760 Access Controller to authenticate through Active Directory.&nbsp; The purpose of this VSC is to give access to domain connected laptops without having to register passwords or WPA-keys.</P><P>&nbsp;</P><P>This solution worked for a while but suddenly AD-authentication stopped working. We had to remove the VSC from the VSC profile list and add it back to make it work again. This was problematic but yet doable waiting for a new software update.</P><P>Since we raised the domain level to 2008 R2 no laptops can connect to this VSC at all. Upgrading to release 5.4.1 did not solve the problem.</P><P>&nbsp;</P><P>Does anyone have any suggestions what might be wrong?</P> Fri, 17 Dec 2010 08:49:15 GMT https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/2336647#M19 Double-A 2010-12-17T08:49:15Z https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/2337043#M22 <P>what i know that 2008 R2 has some issues since Microsoft has changed things in the authentication scheme they have so it will not work, you can double check by contacting ProCurve support for that.</P> Sun, 19 Dec 2010 07:08:48 GMT https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/2337043#M22 Shadow13 2010-12-19T07:08:48Z https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5344655#M392 <P>any solution on this? I have a MSM710 access controller and a few MSM410 APs and would like to get it working with AD authentication for internal users.</P><P>&nbsp;</P><P>My firmware is 5.3.5.61-01-8233</P><P>windows 2008 R2</P><P>&nbsp;</P><P>thanks,</P><P>&nbsp;</P><P>Steve</P> Mon, 26 Sep 2011 22:56:37 GMT https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5344655#M392 zengxibai 2011-09-26T22:56:37Z https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5345219#M393 <P><A href="http://bizsupport2.austin.hp.com/bc/docs/support/SupportManual/c02858508/c02858508.pdf" target="_blank">http://bizsupport2.austin.hp.com/bc/docs/support/SupportManual/c02858508/c02858508.pdf</A></P><P><BR />Fixed issue&nbsp; in the 5.5.2 firmware</P><P><STRONG>RP ID: 57746</STRONG></P><P>Active Directory 802.1x authentication does not work when used with Windows Server<BR />2008-R2.</P><P>&nbsp;</P><P><STRONG>PR ID: 36881</STRONG></P><P>Active Directory Server 2008 logs a warning message when the MSM7xx joins the<BR />domain. However, it is still functional.<BR />The warning begins with the following text. “The security of this directory server can be<BR />significantly enhanced by configuring the server to reject SASL (Negotiate, Kerberos,<BR />NTLM, or Digest) LDAP binds that do not request signing (integrity verification) and<BR />LDAP simple binds that are performed on a cleartext (non-SSL/TLS-encrypted)<BR />connection. ...”<BR />For details, see: <A href="http://go.microsoft.com/fwlink/?LinkID=87923" target="_blank">http://go.microsoft.com/fwlink/?LinkID=87923</A></P> Tue, 27 Sep 2011 10:55:28 GMT https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5345219#M393 Patrick R 2011-09-27T10:55:28Z https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5349005#M400 <P>Can I directly upgrade firmware from 5.3.5 to 5.5.2? we only have one controller so I am a little concerned.</P><P>&nbsp;</P><P>thanks,</P><P>&nbsp;</P><P>Steve</P><P>&nbsp;</P> Thu, 29 Sep 2011 20:04:13 GMT https://community.hpe.com/t5/m-and-msm-series/msm-760-access-controller-with-ad-authentication/m-p/5349005#M400 zengxibai 2011-09-29T20:04:13Z