04-13-2020 03:24 AM - edited 07-05-2021 11:55 AM
Hello,
While making some tests on my WISM2 controller, I found that there was some filtering based on the avpair ssid field sent by the radius server. A long time ago, this feature was only available on autonomous access points and was not supported by wireless controllers. The only reference I found about this change is in the configuration guide of 8.3 version while talking about "VAP ID":
"The rejection, based on the response from the AAA server, is because of the SSID Cisco AVPair support". Do you have any information about this?
Thanks.
04-13-2020 10:56 AM
Hi
Onde WLC side, despite a supported version, usually you need check "AAA Override" on the advanced tab of the requided WLAN.
Here a reference guide about Vendo Specific Attributes:
-If I helped you somehow, please, rate it as useful.-
04-13-2020 11:19 AM - edited 04-13-2020 11:20 AM
Hi Flavio,
Thanks for you reply. I got the same document, but I can't see what packet with "ssid=MYWIRELESS" string value as AV pair matches these examples.
04-13-2020 11:52 AM
You are trying to do things with the SSID as attributes, right? The way i undestand, on the WLC you need to check "AAA override". The policy you need to create on the ISE or any radius you are using.
On the radius you can create policy based on the SSID or WLAN ID.
-If I helped you somehow, please, rate it as useful.-
04-13-2020 12:19 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide