04-08-2020 08:24 AM - edited 07-05-2021 11:55 AM
Does anyone know how to implement this feature on the C9800 ?
Need this for a PWLAN service where I have to source the radius request from the same interface as the clients are in...
At the moment the only way I see is to create this SSID for every interface It will be used
Best regards
Markus
04-08-2020 08:20 PM
On AireOS here is the CLI command
config wlan radius_server overwrite-interface enable <wlan_id>
It is not yet supported in IOS-XE (9800). You can use the below tool for config migration support
https://cway.cisco.com/tools/WirelessConfigConverter/
HTH
Rasika
*** Pls rate all useful responses ***
05-05-2020 09:26 AM
05-05-2020 02:45 PM
I do not know when this feature adding to IOS-XE, I would normally check release notes of upcoming IOS-XE releases (as of today it is 17.2.x)
HTH
Rasika
06-09-2020 10:55 PM
As the feature is still not here the following is a workaround for central switched wlan.
Define the Radius Server mutiple times with different source interface (require a L3 interface on the C9800
Interface Config:
interface Vlan10
description Radius Source Vlan 10
ip address 10.1.10.10 255.255.255.0
interface Vlan20
description Radius Source Vlan 20
ip address 10.1.20.10 255.255.255.0
Define Radius Server with the source interface
aaa group server radius RAD-VL10
server name RADIUS-SERVER
ip radius source-interface Vlan10
aaa group server radius RAD-VL20
server name RADIUS-SERVER
ip radius source-interface Vlan20
Define the authentication lists
aaa authentication dot1x AUTHC-RADIUS-VL10 group RAD-VL10
aaa authentication dot1x AUTHC-RADIUS-VL20 group RAD-VL20
Defne the same SSID multiple times with different radius authentication lists
wlan RADIUS-VLAN10 61 EXAMPLE-SSID
security dot1x authentication-list AUTHC-RADIUS-VL10
wlan RADIUS-VLAN20 62 EXAMPLE-SSID
security dot1x authentication-list AUTHC-RADIUS-VL20
Finally attach the right SSID to the Policy Profile
Hope this helps someone :)
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: