02-18-2009 06:32 AM - edited 03-10-2019 04:20 PM
Hi,
We have the following requirement.
SSID 1
Authenticates against cisco radius which uses external active directory to authenticate against
SSID 2
Authenticates guests against cisco radius which uses proxies authentication request to other institutions radius servers
These cisco radius servers are separate at the moment. We would like to combine them into one.
How do you ensure that users on one SSID are authenticated only against the appropriate authentication directory via the one radius.
Regards
Miron
02-18-2009 07:14 AM
This is possible with a feature called NAP "Network access profile". Here you can set that specific SSID should be authenticated to specific database.
Please check this link,
Regards,
~JG
Do rate helpful posts
02-18-2009 07:52 AM
JG,
Thanks for the pointers mate.
Within that document it doesnt specify SSID anywhere really. Is that something that is identified in a radius attribute that can be used for the decision making?
Regards
Miron
02-19-2009 09:49 AM
WLC use DNIS-The called-station-ID (attribute 30) to send SSID name.
So we need to choose attribute 30 from that list.
Regards,
~JG
Do rate helpful posts
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide