RADIUS with multi SSID's on same AP (RADIUS Client)
Good morning Experts,
We have an Ubiquiti wireless network system, the AP's give out multiple wireless networks, each one using a different VLAN for pointing guest networks out on a separate ADSL connection, and corporate networks using another VLAN which is part of our corporate network.
I have just about managed to work out how to set up RADIUS authentication on these AP's (Clients) ... but I am wondering if it is possible to configure separate network policies and rules, for each different wireless network?
This might be a straight 'No' but I just would like someone else's opinion.
Thanks
We have an Ubiquiti wireless network system, the AP's give out multiple wireless networks, each one using a different VLAN for pointing guest networks out on a separate ADSL connection, and corporate networks using another VLAN which is part of our corporate network.
I have just about managed to work out how to set up RADIUS authentication on these AP's (Clients) ... but I am wondering if it is possible to configure separate network policies and rules, for each different wireless network?
This might be a straight 'No' but I just would like someone else's opinion.
Thanks
Do more with
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Of course you can do that. Just create a condition that matches your SSID for each policy. Your APs or WLC will need to send the "Called-Station" attribute which is formatted as "Client-MAC:SSID" to the RADIUS server.
If your APs or WLC supports the "NAS-ID" attribute per SSID you could use that as a condition, which is easier.
If your APs or WLC supports the "NAS-ID" attribute per SSID you could use that as a condition, which is easier.
Hi Craig,
When you say 'create a condition' do you mean create a Network Policy with the same name as the SSID?
And where would I specify the 'Called-Station' attribute? Sorry I am a complete beginner when it comes to setting up RADIUS.
Here is a screen shot of the configuration options I have on a test wireless network i set up on our AP's management console.
Thanks
When you say 'create a condition' do you mean create a Network Policy with the same name as the SSID?
And where would I specify the 'Called-Station' attribute? Sorry I am a complete beginner when it comes to setting up RADIUS.
Here is a screen shot of the configuration options I have on a test wireless network i set up on our AP's management console.
Thanks
Craig, I've done a bit more reading into this since my last comment, and found where to specify VLAN info instead.
However, when my computer connects to the network, it is not picking up the VLAN 8 which was specified. Any tips?
thanks
However, when my computer connects to the network, it is not picking up the VLAN 8 which was specified. Any tips?
thanks
If you do VLAN assignment via RADIUS you only need one SSID. The RADIUS policy tells the WLC which VLAN to put the client on. You need to untick the VLAN ID box in the SSID config though and in some cases the WLC might need to be told to use the VLAN attributes that you configured in the RADIUS profile.
Premium Content
You need an Expert Office subscription to comment.Start Free Trial