Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
790
Views
0
Helpful
2
Replies

What attributes are shared between a Radius Server and a WLC?

Go to solution
rraineri
Level 1
Level 1

‎02-28-2014 05:23 PM - edited ‎07-05-2021 12:18 AM 

I have a customer who is trying to setup a Radius server to authenticate Management users for the controller,
she is using a Microsoft NPS R2 server. All good at this point.

She needs to know what attributes are shared between the server and the WLC to complete the authentication 
because she is being successfully authenticated, but still unable to access the WLC.

Someone knows what those attributes are?

The only information at the moment that I found, was on a document that said that different management
users can receive different Vendor-specific Attributes. That means that the returned attributes to the WLC 
will depend of what radius server model or platform you are using.

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎02-28-2014 06:28 PM

Robin,

For using Microsoft radius to authenticate management users, you can reference this document, which shows you the steps involved.

http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/91392-airespace-vsa-msias-config.html

Thanks,

Scott

*****Help out other by using the rating system and marking answered questions as "Answered"*****

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful

Go to solution
stefan.angerer
Level 1
Level 1

‎03-02-2014 08:11 AM

Hi Robin,

you need to send the "service-type" atttribute to the controller.

value "administrative" = read/write

value "nas prompt" = read only

hope that helps,

Stefan

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎02-28-2014 06:28 PM

Robin,

For using Microsoft radius to authenticate management users, you can reference this document, which shows you the steps involved.

http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/91392-airespace-vsa-msias-config.html

Thanks,

Scott

*****Help out other by using the rating system and marking answered questions as "Answered"*****

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
stefan.angerer
Level 1
Level 1

‎03-02-2014 08:11 AM

Hi Robin,

you need to send the "service-type" atttribute to the controller.

value "administrative" = read/write

value "nas prompt" = read only

hope that helps,

Stefan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card