Multiple WLAN setup using IAS to authenticate

tleuthauser · ‎01-24-2011

I have IAS running on Windows Server 2K3 with a WLC 4400 controlling several APs. What I would like to accomplish is this:

WLAN 1 - For normal domain users, radius profile set to match on Windows Group Domain Users.

WLAN 2 - For Executives, radius profile set to match on Windows Group ExecutiveWIreless.

All members of ExecutiveWireless are also Domain Users. I want to make certain that membership in the ExecutiveWireless group supercedes membership in the Domain Users group. I thought about adding a VSA for WLAN-ID, but that does not look like it can be used in the authentication process, only after authentication has occured.

Any help would be greatly appreciated.

richard.dimond · ‎02-11-2011

Travis

I don't know of any way that the IAS can control which WLAN is accesed.

The IAS remote policies will only validate a user's access credentials.

The access the wlan's is controled by the SSID

I think that the only control is to not broadcast the SSID's and only give the names out to the relevant users.

Although it's not good practise, you could just broadcast the non-exec SSID.

Richard

Multiple WLAN setup using IAS to authenticate

Controller WLAN authenticate user with portail

WLC 9800 MAC filter multiple wlan

Multiple SSIDs connect to different VLANS using AIR-CAP3702I AAP

ワイヤレス　簡単コントローラ初期設定ガイド -WLAN Express Setup-

Secure Access: Resource Connector の Status が Setup failed となり適切に動作しない

Multiple WLAN setup using IAS to authenticate

Controller WLAN authenticate user with portail

WLC 9800 MAC filter multiple wlan

Multiple SSIDs connect to different VLANS using AIR-CAP3702I AAP

ワイヤレス 簡単コントローラ初期設定ガイド -WLAN Express Setup-

Secure Access: Resource Connector の Status が Setup failed となり適切に動作しない

ワイヤレス　簡単コントローラ初期設定ガイド -WLAN Express Setup-