Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
799
Views
0
Helpful
2
Replies

Native Profiling (WLC v7.6) + Web Auth

Dave Anthony David
Level 1
Level 1

ā€Ž03-05-2014 10:40 PM - edited ā€Ž07-05-2021 12:21 AM

Hi All,

I am using WLC 5508 v7.6 and configured local client profiling [http and dhcp] in SSID with Web-Auth only. The profiling is configured to have Apple IOS devices mapped to certain VLAN and leaving other devices like  Windows-Workstation to a default VLAN mapped to via AP Grouping.

This actually works when I am only using L2 (WPA-PSK) as authentication method. But when using L3 Web auth, we can't get the VLAN mapping works. But the device is properly profiled.

It this a limitation of this feature?

Regards,

Dave

Labels:
0 Helpful
2 Replies 2

Scott Fella
Hall of Fame
Hall of Fame

ā€Ž03-06-2014 05:01 AM

The reason for this is that WebAuth is a layer 3 authentication method in which the devices have to associate and obtain an ip address.   You will not be able to set a vlan to a guest user, because they already have an ip address assigned to them.  This is the same scenario when using ISE or any other radius.  You would need to send a CoA and disassociate the device, know the mac so when it attempts to associate again, the WLC will put them on the correct vlan.... doesn't work this way though.

Thanks,

Scott

*****Help out other by using the rating system and marking answered questions as "Answered"*****

-Scott
*** Please rate helpful posts ***
0 Helpful

Dave Anthony David
Level 1
Level 1
In response to Scott Fella

ā€Ž03-06-2014 04:00 PM

Hi Scott,

Thanks for the reply. So. You mean this is possible when using WLC and ISE?

Sent from Cisco Technical Support iPhone App

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card