Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1237
Views
0
Helpful
3
Replies

FlexConnect with RADIUS Vlan assignment

topher1086
Level 4
Level 4

‎10-11-2013 05:15 AM - edited ‎07-04-2021 01:04 AM

I'm using the Cisco virtual controller with a handful of access points in Flexconnect mode.  I'm running version 7.5. 

I'm using the Microsoft NPS (2008 R2) for right now.  I can authenticate a domain computer and assign it to the admin vlan and everything works great.  I also have a guest vlan that I'm authorizing based on a domain user group and that's working great.

That allows me to specify a vlan ID (number).  The issue is that the appropriate vlan ID is different across buildings on a campus.  (layer 2 access switches trunked up to the distribution switches)  I know I could create different authorization policies for each flexconnect group, but that will get out of hand as we go forward.

What I'm looking for is the ability to specify a vlan "name" in the RADIUS authorization rule.  Then on the controller we would map that name to a vlan ID at the FlexConnect group.  Is this possible today?  Or is this a feature request?

Thanks.

Labels:
0 Helpful
3 Replies 3

Richard Atkin
Level 4
Level 4

‎10-11-2013 09:49 AM

Unfortunately returning (using!) a VLAN name in the Radius response is only possible with centrally switched traffic today...

0 Helpful

topher1086
Level 4
Level 4
In response to Richard Atkin

‎10-14-2013 12:07 PM

Is this a roadmap item?

0 Helpful

Richard Atkin
Level 4
Level 4
In response to topher1086

‎10-15-2013 12:47 AM

Doubtful... Only the switch knows the local VLAN names; they're not propagated up to the AP from the switch so it can't translate the name to an ID.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card