Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
682
Views
0
Helpful
2
Replies

Cisco WLC Single SSID Multiple Vlan - open authentication

Jay Russell Santos
Level 1
Level 1

‎10-03-2016 11:53 PM - edited ‎07-05-2021 05:54 AM

Hi Experts,

I'm setting up a wireless infra. I would have Single SSID with multiple users (different company). The WLAN is open authentication, that's where the problem is. We want some separation of some sort. Preferably, different users should be on different vlan. I know there's a way to do this by implementing Dynamic Vlan. However, this one is open authentication.

Is there a way to do it?

Thanks.

Labels:
0 Helpful
2 Replies 2

Ric Beeching
Level 7
Level 7

‎10-04-2016 04:12 AM

With no authentication not really as you'd need some form of identifier with which to assign a user to a particular VLAN.

The only way to separate them with this setup and assuming you have Cisco APs/WLAN Controller would be to use WLAN VLAN Mappings with FlexConnect groups which would at least restrict the VLAN to per WAP.. but that's not really achieving company separation.

-----------------------------
Please rate helpful / correct posts
0 Helpful

JASON BOYERS
Level 5
Level 5
In response to Ric Beeching

‎10-04-2016 08:20 AM

You could do something using MAC filtering with RADIUS, having the RADIUS server send back the VLAN based on the MAC.  That's much easier using a RADIUS server like ISE or ACS than Microsoft NPS.  Other than that, you don't have any way of differentiating users if it is completely open, since the MAC is the only information available.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card