Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
524
Views
0
Helpful
2
Replies

How to have AP1232 pass user IP to ACS and reflect in the radius log?

pppyyyppp
Level 1
Level 1

‎04-20-2006 08:32 PM - edited ‎03-10-2019 02:33 PM

Currently, we are able to get the User-Name [radius attribute 1] to reflect in the ACS log. A debug radius at the AP show this radius attribute is passed back to ACS. However, cannot seem to find the attribute to pass user IP address back to the ACS.

We are using MS-PEAP authentication for 802.1x.

Pls advise and thks

Labels:
0 Helpful
2 Replies 2

darpotter
Level 5
Level 5

‎04-21-2006 05:20 AM

In the accounting stop record there should be a Framed-IP-Address attribute to show this info.

You will not get this in the Passed Auths logs because at that point an IP address will not have been assigned.

Similarly 802.1x via RADIUS sends the accounting start prior to IP being up and running.

So goto system config, logging, radius accounting and make sure Framed-IP-Address is enabled.

Darran

0 Helpful

pppyyyppp
Level 1
Level 1
In response to darpotter

‎04-21-2006 08:05 PM

we have done that already in the ACS prior posting this post. Additionally, have also enabled the radius attribute 8 in the AP1200 series configuration, the Frame-IP-Address field still does not show the ip address.

In link-framed connections using such protocols as SLIP and PPP, the Framed-IP-Address attribute carries the value of the IP address to be assigned to the connection

The Frame-IP-Address is for PPP and SLIP protocol, can advise if this work for Wireless authentication via EAPOW.

Pls advise.

0 Helpful
Customers Also Viewed These Support Documents