08-11-2017 07:38 AM - edited 07-05-2021 07:31 AM
Hello,
I'm wondering if it's possible to have :
In the centralized site : the WLC
On the local site : The flexconnect AP's + The AAA server
The goal would be to use 802.1X method for the SSID with local authentication and local switching .
If it's working, where do we have to configure the AAA server ? On the WLC ? or only on the flexconnect group ?
Thank you,
Alexis
08-11-2017 09:32 AM
Hi aleopoldie,
i think if you have a local AAA server, you can configure this in the Flexconnect group, and in the SSID config select Local Atuh option in advanced configuration.
08-16-2017 12:01 AM
Hello Juan,
Thank you, that was also my idea.
Is AAA override needed on the WLAN (Advanced tab) ?
08-17-2017 06:32 AM
Hi,
Yes, you need to enable Flex connect Local Switching + Local Authentication on the WLAN -> Advanced settings. On the Flex connect group -> General -> Add AAA server after entering the Server ip, shared secret, primary/secondary, port number.
AAA override is required if you have any return Radius attribute like Vlan/Qos/ACL on each user basis.
Regards,
Divya
08-25-2017 02:51 PM
Hi divp,
So if I understand correctly, we don't have to configure the AAA server on the WLC as we do it on the flexconnect group, right ?
I suppose we need to add the AP's as AAA clients on the AAA server.
Do we need something else ?
AL
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide