cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
779
Views
0
Helpful
1
Replies

Multiple WLAN setup using IAS to authenticate

tleuthauser
Level 1
Level 1

I have IAS running on Windows Server 2K3 with a WLC 4400 controlling several APs.  What I would like to accomplish is this:

WLAN 1 - For normal domain users, radius profile set to match on Windows Group Domain Users.

WLAN 2 - For Executives, radius profile set to match on Windows Group ExecutiveWIreless.

All members of ExecutiveWireless are also Domain Users.  I want to make certain that membership in the ExecutiveWireless group supercedes membership in the Domain Users group.  I thought about adding a VSA for WLAN-ID, but that does not look like it can be used in the authentication process, only after authentication has occured.

Any help would be greatly appreciated.

1 Reply 1

richard.dimond
Level 1
Level 1

Travis

I don't know of any way that the IAS can control which WLAN is accesed.

The IAS remote policies will only validate a user's access credentials.

The access the wlan's is controled by the SSID

I think that the only control is to not broadcast the SSID's and only give the names out to the relevant users.

Although it's not good practise, you could just broadcast the non-exec SSID.

Richard