Wireless Authentication

piasterloo · ‎03-13-2025

Folks ,

Our WAPs are set up on the Management VLAN 50, while the wireless users obtain their IP addresses from VLAN 80. Authentication is managed through a RADIUS server. Is it essential to enable inter-VLAN communication between VLAN 50 and VLAN 80 for successful authentication?

Please advise and thanks

michalc1 · ‎03-13-2025

Which VLAN is the RADIUS server on?

If VLAN 50 - no need for interVLAN

If other than VLAN50 - yes for interVLAN need.

There is also an option for alternate MGMT interface if needed.

If you found this post helpful, please give it kudos. If it solved your problem, click "accept as solution" so that others can benefit from it.

ww^ · ‎03-13-2025

No

You only need connectivity between the management ip and the radius

piasterloo · ‎03-13-2025

radius server is not on prem...its hosted in the DC

DHAnderson · ‎03-13-2025

We have most of our clients using RADIUS for WiFi Authentication. The access points are on a management VLAN and the clients are on a different VLAN. No inter-VLAN traffic is allowed, and authentication works fine.

Dave Anderson

BlakeRichardson · ‎03-13-2025

This documentation has a great image showing how the process works.

https://documentation.meraki.com/MR/Encryption_and_Authentication/Configuring_RADIUS_Authentication_with_WPA2-Enterprise

So as long as your client can access the AP and the AP itself can access the Radius server you are all good.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.