Restricting Wireless Access using ACS 3.3

Unanswered Question
Feb 9th, 2007

We are currently running ACS 3.3 and I am trying to figure out how to restrict Wireless access to specific user groups. Our current setting is using PEAP and ACS as the Radius. Our user database is mapped to Windows 2003 AD. I've got the PEAP working and the radius authentication is also working but I cannot seem to figure out how to restrict the wireless access to specific Windows/ACS groups.

Erik

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
amrkrish Fri, 02/09/2007 - 22:41

In ACS 3.3 we dont have advanced feature like Network Access Profile.

We can do one thing. Isolate all the wireless users to a specific group in Active directory.

Map this AD group to specific ACS group. In this way we can restrict the wireless access to specific Windows/ACS groups.

darpotter Sun, 02/11/2007 - 15:07

This approach doesnt really scale. If I'd already mapped AD groups like

admins -> acs admins

sales -> acs sales

etc

I cant add a second level of mapping. All I can do is replace the above with

wired users -> acs wired

wireless users -> acs wireless

I wouldnt be able to have multiple wireless authorisations.

Actions

This Discussion