cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
203
Views
0
Helpful
1
Replies
Highlighted
Beginner

WLC 5508 radius accounting sending wrong class attribute

 

I am sending the radius accounting information from our Cisco 5508 WLC to our Fortigate firewall and the class attribute is not correct

The following is the log file from the Fortigate showing the radius accounting information.

61,07:45:16,"10.80.0.254""Usernamehasbeenreplaced","allow","no log","wifi-staff+CACS:ACS1/311035611/31113113",1,No
 
"wifi-staff+CACS:ACS1/311035611/31113113"   is the class attribute.
 
I have the ACS adding wifi-staff as the class attribute, i do not know where the CACS:... is coming from.
 
Any Ideas? 
10.10.11.14 is the WLC.  10.64.137.22 is a server running Microsoft NPS just so i could do a capture of the packet.  It is just forwarding the information to our firewall 10.100.100.1
 
Capture_Wireshark.JPG
Everyone's tags (3)
1 REPLY 1
VIP Advisor

Re: WLC 5508 radius accounting sending wrong class attribute

Hi 

Which "Auth Called Station ID Type" to you have on the WLC and which one your RADIUS is expecting.

 

 

 

 

-If I helped you somehow, please, rate it as useful.-

 

 

 

CreatePlease to create content