Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
587
Views
0
Helpful
3
Replies

Access restriction based on SSID

farkascsgy
Level 4
Level 4

‎01-02-2007 02:48 AM - edited ‎07-03-2021 01:26 PM

Hello,

I am interesting in a solution for access restriction based on SSID. I use RADIUS and ACS. Is there any solution to do limitation based on SSID? I use AP1200 series...

Thanks in advance...

FCS

Labels:
0 Helpful
3 Replies 3

farkascsgy
Level 4
Level 4

‎01-02-2007 08:57 AM

I found use cisco-av-pair attributes to do this limitation:

Cisco IOS/PIX 6.x RADIUS Attributes

[009\001] cisco-av-pair

ssid="ssid-name"

bye

FCS

0 Helpful

charrellc011699
Level 1
Level 1
In response to farkascsgy

‎11-26-2007 01:58 PM

Hi,

I am attempting this same result: SSID restriction based on group membership.

When I re-configure the NAS client as Cisco IOS/PIX 6.x in order to rely on the cisco-av-pair field, this works great to limit the user to only the specified SSIDs, however the Access Point is no longer able to austhenticate to WDS since it uses LEAP authentication to the same RADIUS server - the Cisco IOS/Pix 6.x option does not support LEAP...

Is there any way to change WDS authentication from LEAP to EAP-FAST for example? Or can we implement cisco-av-pair under Cisco Aironet for this?

Thanks,

Curtis H.

0 Helpful

aalsayed
Level 1
Level 1

‎01-16-2007 06:09 AM

hello

i am trying to do the same thing do u ahve any update.. what about aaa overwrite ,, network identity wiht vlan TAg

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card