cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2472
Views
0
Helpful
4
Replies

How to see which APs that authenticated Guests are connecting to?

juanpablorivera
Level 1
Level 1

 

Any ideas or recommendations on how to be able to see the Access Points that Guest users/endpoints (or any other authenticated endpoint) are connecting to? The access points are controller based to a 3504 WLC. 

 

How to accomplish this either in Context Visibility or Live Logs, or any other place in ISE 2.7

 

Thank you

 

1 Accepted Solution

Accepted Solutions

Colby LeMaire
VIP Alumni
VIP Alumni

The attribute that you want to look for is called "Called-Station-ID" and it will be in the format of <AP Mac Address>:<SSID>.  So in Context Visibility, you can open the endpoint and look for that attribute.  Or in Live Logs, you can open the details of an authentication.  You can also run a Radius Authentications report and export it to CSV.  Then filter on the attribute column for "Called-Station-ID".

On your WLC, the "Called-Station-ID" is configurable and it is possible that it is configured to send some other information or in a different format.  Some options could be to send the AP name instead of the AP Mac address.

View solution in original post

4 Replies 4

Colby LeMaire
VIP Alumni
VIP Alumni

The attribute that you want to look for is called "Called-Station-ID" and it will be in the format of <AP Mac Address>:<SSID>.  So in Context Visibility, you can open the endpoint and look for that attribute.  Or in Live Logs, you can open the details of an authentication.  You can also run a Radius Authentications report and export it to CSV.  Then filter on the attribute column for "Called-Station-ID".

On your WLC, the "Called-Station-ID" is configurable and it is possible that it is configured to send some other information or in a different format.  Some options could be to send the AP name instead of the AP Mac address.

Thank you very much

I ran this command in the WLC

> config radius callStationId ap-name

and saved config.

 

After having some authenticated endpoints, I went to check Context Visibility / Endpoints, and tried adding more columns clicking on the settings icon right next to the filter icon, but couldn't find the "Called-Station-id" column option to be added. Any recommendation on how to make it appear or be able to add it?

 

Also I checked the details of authenticated endpoints in the Live Logs, and couldn't find any attribute similar to Caller-Station-id in the details.

Do I have to make any changes in ISE to somehow be able to handle or interpret the callStationId attribute that the WLC is now supposed to be sending after running the above command ?

Will appreciate any pointers, thanks.

There is nothing to change on the ISE side.  Unfortunately, there is no ability to add another column to the Context Visibility->Endpoints main list for Called-Station-ID.  In the Live Log details for an authenticated session, it would show up under the section titled "Other Attributes" on the left side of the page.  Probably more towards the bottom.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: