01-22-2020 11:05 AM
How can we set a WLC, configured with multiple WLANs, to use a single same IP address when authenticating 1X clients, regardless of which WLAN the request is coming from?
As a parallel, in the Wired world, on a Catalyst switch we can type the command: "ip radius source-interface vlan 5" This way, regardless from which VLAN the user traffic is arriving from, if the switch needs to talk to ISE (radius server), the switch also uses its IP address from vlan 5.
So, is there a way for the WLC to use always the same IP address when connecting Radius? I can't seem to find how: I have played with "Network User" and "Management" setting under Security > AAA > Radius > Authentication, but to no avail.
Thanks
Solved! Go to Solution.
01-22-2020 11:50 AM - edited 01-22-2020 11:59 AM
So, is there a way for the WLC to use always the same IP address when connecting Radius?
-Yes. If you wish to source each vlan interface respectively you would enable 'radius server overwrite interface' which is under: WLAN id->Security tab->AAA servers. If not, disable this & it should work via mgmt ip. HTH!
01-23-2020 02:07 PM
It works! Thank you Mike.
01-22-2020 11:50 AM - edited 01-22-2020 11:59 AM
So, is there a way for the WLC to use always the same IP address when connecting Radius?
-Yes. If you wish to source each vlan interface respectively you would enable 'radius server overwrite interface' which is under: WLAN id->Security tab->AAA servers. If not, disable this & it should work via mgmt ip. HTH!
01-23-2020 02:07 PM
It works! Thank you Mike.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide