Specifications

7-39

Cisco NAC Appliance - Clean Access Manager Configuration Guide

OL-28003-01

Chapter 7 User Management: Configuring Authentication Servers

Auth Test

Figure 7-33 RADIUS—Microsoft Attribute Names

Figure 7-34 RADIUS—WISPr (Wireless Internet Service Provider roaming) Attribute Names

Auth Test

The Auth Test tab is allows you to test Kerberos, RADIUS, Windows NT, LDAP, and AD SSO

authentication providers you configured against actual user credentials, and lists the role assigned to the

user. Error messages are provided to assist in debugging authentication sources, particularly LDAP and

RADIUS servers.

To use the Auth Test function to test AD SSO authentication in Cisco NAC Appliance, you must perform

the following set-up steps, as described in the “Configuring Active Directory Single Sign-On (AD SSO)”

chapter of the Cisco NAC Appliance - Clean Access Server Configuration Guide, Release 4.9(x), before

testing AD SSO server authentication:

1. Create an LDAP Lookup Server as described in the “Add LDAP Lookup Server for Active Directory

SSO (Optional)” section of the Cisco NAC Appliance - Clean Access Server Configuration Guide,

Release 4.9(x).

2. Create an AD SSO authentication provider and associate the AD SSO authentication provider with

the LDAP Lookup Server using the LDAP Lookup Server field, as described in the “Add Active

Directory SSO Auth Server” section of the Cisco NAC Appliance - Clean Access Server

Configuration Guide, Release 4.9(x).

Tip When creating or making changes to an existing authentication provider, create a new Auth Server entry

that points to the staging or development setup. You can then use Auth Test to test the setup prior to

production deployment.