Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
451
Views
15
Helpful
5
Replies

Deployment for Internet SSID

osamaibrahim_2011
Level 1
Level 1

‎10-13-2022 07:31 AM

Hi,

I have new request which I'm looking for your guidance and advice, as I don't have that much experience in wireless.  

the request details as below:

we need to provide internet for specific persons located in different locations, this internet access should be through existing WLAN infrastructure, which have 8540wlc and 1832i AP.

this access must be secured, and user authentication should be through ISE.

I have prepared below steps for this deployment, please advise if any point does not correct or it need advance configuration.

1- create new SSID.

2- create new AP group and assign the new SSID to this group.

3- assign this AP group to the APs in that specific location.

4- for AP authentication part I have to configure the AAA IP in SSID security.

please feel free to correct me in above points, also your advice regarding configuring the authentication policy in ISE.

Kind Regards. 

 

 

0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎10-13-2022 09:42 AM

yes that is correct steps , only apply to the area of the AP required.( you are doing that too)

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

osamaibrahim_2011
Level 1
Level 1
In response to balaji.bandi

‎10-16-2022 03:02 AM

Hi Balaji,

thanks for your reply, would you please explain for how to isolate this network from local intranet? and how to secure the same.

BR, 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to osamaibrahim_2011

‎10-17-2022 10:50 AM

You need extend that VLAN to DMZ and internet.

do you have any network diagram for us to give better advise.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Haydn Andrews
VIP
VIP

‎10-13-2022 02:24 PM

Dont forget to include the other required SSIDs to the AP groups.

Also do they require link to be completely segregated from the corporate network? If so then you need to look at the security requirements of the wired network, or look at an anchored solution to a DMZ WLC.

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***

osamaibrahim_2011
Level 1
Level 1
In response to Haydn Andrews

‎10-16-2022 03:00 AM

Hi Haydn,

yes you're correct, we need this SSID totally isolated from local network, please would you explain more for this isolation and required security configuration.

BR,

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card