Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
845
Views
0
Helpful
1
Replies

WLC 5508 radius accounting sending wrong class attribute

dwysocki2000
Level 1
Level 1

‎09-01-2018 03:05 PM - edited ‎07-05-2021 09:04 AM

 

I am sending the radius accounting information from our Cisco 5508 WLC to our Fortigate firewall and the class attribute is not correct

The following is the log file from the Fortigate showing the radius accounting information.

61,07:45:16,"10.80.0.254""Usernamehasbeenreplaced","allow","no log","wifi-staff+CACS:ACS1/311035611/31113113",1,No
 
"wifi-staff+CACS:ACS1/311035611/31113113"   is the class attribute.
 
I have the ACS adding wifi-staff as the class attribute, i do not know where the CACS:... is coming from.
 
Any Ideas? 
10.10.11.14 is the WLC.  10.64.137.22 is a server running Microsoft NPS just so i could do a capture of the packet.  It is just forwarding the information to our firewall 10.100.100.1
 
Capture_Wireshark.JPG
Labels:
0 Helpful
1 Reply 1

Flavio Miranda
VIP
VIP

‎09-03-2018 09:52 AM

Hi 

Which "Auth Called Station ID Type" to you have on the WLC and which one your RADIUS is expecting.

 

 

 

 

-If I helped you somehow, please, rate it as useful.-

 

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card