Solved

dynamic VLAN not working with RADIUS

Posted on 2016-08-22
3
98 Views
Last Modified: 2016-08-23
Hi Experts,

I have a RADIUS NPS running on Windows Server 2012, and have configured this to work with 802.1X wireless.

I've got to the point where a user needs to be in the relevant security group in AD in order to connect to the wireless network; so I know that authentication is working.

However I then proceeded to specify VLAN information in the Network Policy, as below, but when I connect a windows 7 laptop to this network, while being logged in as an authenticated user, this connects fine but does not use the VLAN I have specified.

Network Policy
VLAN 8 on our switches, has its own IP Helper Address, which points to an ADSL router on that VLAN... so this should then use a separate internet connection.. but it is not using VLAN 8 at all.. it continues to use a native VLAN 1 ... and the computer uses our corporate network internet connection.

Any tips?

thanks
Nathan
0
Comment
Question by:Nathan Lindley
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 46

Expert Comment

by:Craig Beck
ID: 41765216
Is your WLC honouring the VLAN ID that the RADIUS is sending?  You need to tell the WLC to apply a VLAN ID that is dictated by RADIUS, rather than what you have set on the SSID.
0
 

Author Comment

by:Nathan Lindley
ID: 41765251
Hi Craig,

I am using a Cisco WAP4410N with 2.0.7.4 firmware. I am not too sure where I would specify this on here.. I'll attach some screenshots?

setup-advanced.PNG
wireless-connection-control.PNG
wireless-security.PNG
wireless-VLAN-and-QOS.PNG

Thanks
0
 
LVL 46

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 41766810
Hmm, so unfortunately the WAP4410N doesn't support dVLAN assignment.  It's a small-business AP so Cisco kindly restricted its feature-set. :-(
0

Featured Post

Webinar: MongoDB® Index Types

Join Percona’s Senior Technical Services Engineer, Adamo Tonete as he presents “MongoDB Index Types, How, When and Where Should They be Used?” on Wednesday, July 12, 2017 at 11:00 am PDT / 2:00 pm EDT (UTC-7).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question