Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
505
Views
0
Helpful
1
Replies

Cisco ACS Service Selection Rule using Called-Station-ID

Tony Kan
Level 1
Level 1

‎07-23-2014 08:49 AM - edited ‎03-10-2019 09:53 PM

We're currently running a Cisco ACS 5.3.0.40 VM appliance and using this to authenticate wireless clients from a Cisco 5508 WLAN setup.  I've setup a Service Selection rule to match RADIUS Protocol and a Compound Condition where RADIUS-IETF is looking for Called-Station-ID to match the MAC of the AP along with the SSID.  I also have a catch all rule to match only RADIUS and authenticate via AD.

When looking at AAA Authentication logs, I'm seeing the correct info on successful authentication (<MAC>:<SSID>) but I'm not seeing any rule hits when looking at the Service Selection Rules after doing a manual refresh of hits.  Am I missing configuration somewhere for this to work?

 

Labels:
0 Helpful
1 Reply 1

edwardcollins7
Level 1
Level 1

‎07-24-2014 01:14 AM

Tony,

Your setup completely makes sense but could you share some screenshots?

Are you using "contains" in the called station id value?

Rate if Useful :)

Sharing knowledge makes you Immortal.

Regards,

Ed

0 Helpful
Customers Also Viewed These Support Documents