Buy or Renew
Buy or Renew
Register Here! - Join us 11/13 for the "Navigating DHCP Processes in SD-Access Network" Community Live event
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
628
Views
0
Helpful
1
Replies

Fabric wireless dynamic IP pool assignment

dm2020
Level 1
Level 1

‎05-19-2019 12:23 PM

Hi All,

 

For the dynamic assignment of wired users to a particular VN/IP pool, we can configure an authorisation policy in ISE to return the VLAN name that matches the required IP pool's auth policy (such as 10.1.1.0-CAMPUS). I have tested and this works without any problems. Is it also possible to achieve the same thing with Fabric wireless? For example, if my corporate SSID is associated to corporate data pool 10.1.1.0/24 within DNAC, but I want to dynamically assign certain users to a different IP pool when connecting to the same SSID, (such as a dedicated pool for BYOD), can I use the same method as above? I dont have fabric wireless currently enabled so I cant test this.

 

thanks

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Mike.Cifelli
VIP Alumni
VIP Alumni

‎05-20-2019 10:45 AM

Yes you should be able to accomplish this by using different authz conditions. Assuming you will use your SSID as one of the conditions just separate the different use cases out using other conditions such as AD security group, local ise endpoint group, etc. You just need to simply determine how you want conditions to be met in order to push different authz result profiles. As you mentioned your authz profiles will push policy for the different ip pools/sgts that you wish to push. In DNAC just create your other IP pools, assign to VN, and follow your same wired steps. They should be similar and straightforward. HTH!
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card