Re: VLAN on APs

n-khouri · ‎09-15-2003

I have Cisco ACS working as my AAA server for Wireless users login using EAP authentication associted with an SSID .

I have configured another SSID with new VLAN ID , configuring everything right on the Radio interface and the Fastethernet and configuring the switchport for dot1q .

After configuring the above , I can not login to the AP using any of the SSIDs ... deleting all VLANs will bring back access to normal . ANy idea where to start ?

cminch · ‎09-18-2003

Hi,

Did you also set the swithcport for the vlan in which to communicate to the AP? Or is the switchport in trunking mode? What Software Version are you running? you need at least a 12.0 to have VLAN Support. I recommend 12.0.3T

Here is a link for the config on VLANs.

http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/accsspts/ap350scg/ap350ch4.htm

Good luck,

Corey

n-khouri · ‎09-21-2003

Thanks man , I idid configure teh switchport on teh switch for dot1q tagging , I have the 1100 AP and not the 350 , I have no problem in teh creation of VLAn at the core, edge and AP , all ok according to VLAN status .

I wonder if this is a RADIUS related issue .

marcbutler · ‎10-31-2003

Yes, to enable VLAN tagging being assigned from ACS, you need to turn on IETF Radius Attributes 64, 65 and 81. Then, you need to turn these on within each group in Group Setup and assign each group to each VLAN that you want them to be in. Are you wanting to authenticate against Active Directory?