https://community.cisco.com/t5/wireless/multiple-ssid-authentication-and-nps/m-p/3311719#M139913 <P>We are trying to setup a new SSID for only certain group of AD users. We already have another SSID which allows all domain users after authentication. On testing&nbsp;I found it doesn't matter if&nbsp;I was in the new allowed AD group or not, I always successfully authenticated on the new SSID. How can I make only selected group to authenticate.</P> Mon, 05 Jul 2021 15:06:16 GMT rajitoor55 2021-07-05T15:06:16Z https://community.cisco.com/t5/wireless/multiple-ssid-authentication-and-nps/m-p/3311719#M139913 <P>We are trying to setup a new SSID for only certain group of AD users. We already have another SSID which allows all domain users after authentication. On testing&nbsp;I found it doesn't matter if&nbsp;I was in the new allowed AD group or not, I always successfully authenticated on the new SSID. How can I make only selected group to authenticate.</P> Mon, 05 Jul 2021 15:06:16 GMT https://community.cisco.com/t5/wireless/multiple-ssid-authentication-and-nps/m-p/3311719#M139913 rajitoor55 2021-07-05T15:06:16Z https://community.cisco.com/t5/wireless/multiple-ssid-authentication-and-nps/m-p/3311720#M139914 <P>If you have 802.1x working then you would create a new radius policy, place it in front of the existing policy to only authenticate that user group. It’s all about modifying the policies and placing them in the proper order. Hope that helps.&nbsp;</P> Mon, 15 Jan 2018 21:34:16 GMT https://community.cisco.com/t5/wireless/multiple-ssid-authentication-and-nps/m-p/3311720#M139914 Scott Fella 2018-01-15T21:34:16Z