Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
701
Views
5
Helpful
1
Replies

Restringer connection Android and IPhone WLC5508 in specific SSID

Alex Ribas
Level 1
Level 1

‎09-18-2021 05:35 AM

Hi all

I would like to know if exist the possibility that create one SSID Example: WMOBILITY and in this SSID restrict connection only for users that use. IPhone or Android?

 

I'm using WLC 5508 (without ISE Authentication to users)

5508 --> The users connection are --> via 802.1x (Radius) -> NPS Microsoft.

 

I appreciate your help.

 

Thank you

Alex

 

 

 

 

 

0 Helpful
1 Reply 1

Arshad Safrulla
VIP Alumni
VIP Alumni

‎09-18-2021 10:34 AM

You can do it by using local profiling. Make sure that you have enabled http and dhcp local profiling. But you need to run firmware 8.X.X. 

https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-10/config-guide/b_cg810/per_wlan_wireless_settings.html

 

Then you need to create ACL's as per your access control requirement and then go to Security==>Local Policies create the policies as required and associate the correct ACL's. Finally go to WLAN and polciy-mapping and set the policies you created. This way you can achieve your requirement, but please note that the other devices trying to connect to the WLAN will not be informed why they cannot connect.

 

My preferred way is to use an advanced Radius server like ISE, Clearpass etc. and do device profiling. Based on the outcome of the profiling allow access and who gets denied will be redirected to a splash page which says why there access was rejected.

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card