SSID Broadcast

Unanswered Question
Sep 16th, 2007

I'm looking for the command to turn off SSID broadcast on a 1811w router. I would also like to perform MAC address authentication. So far the documentation I've found has been spotty.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
rob.huffman Mon, 09/17/2007 - 04:37

Hi William,

The command that controls the "Broadcast" of the SSID is "guest mode". Have a look;

guest-mode (SSID configuration mode)

Use the guest-mode SSID configuration mode command to configure the radio interface (for the specified SSID) to support guest mode. Use the no form of the command to disable the guest mode.

[no] guest-mode

The access point can have one guest-mode SSID or none at all. The guest-mode SSID is used in beacon frames and response frames to probe requests that specify the empty or wildcard SSID. If no guest-mode SSID exists, the beacon contains no SSID and probe requests with the wildcard SSID are ignored. Disabling the guest mode makes the networks slightly more secure. Enabling the guest mode helps clients that passively scan (do not transmit) associate with the access point. It also allows clients configured without a SSID to associate.


This example shows how to set the wireless LAN for the specified SSID into guest mode:

(config-if-ssid)# guest-mode

This example shows how to reset the guest-mode parameter to default values (no broadcast SSID):

(config-if-ssid)# no guest-mode

From this IOS Command doc;

Configure Open with MAC Authentication

In this type of authentication, the wireless client will be allowed to access the WLAN network only if the client's MAC address is under the list of allowed MAC addresses in the authentication server. The AP relays the wireless client device's MAC address to a RADIUS authentication server on your network, and the server checks the address against a list of allowed MAC addresses. MAC-based authentication provides an alternate authentication method for client devices that do not have EAP capability.

Hope this helps!


noahsark Mon, 09/17/2007 - 13:47

Yes, your email was very helpful. Thanks.

Quick question: is it possible to combine mac-address authentication with WPA-psk?

salehin71 Sat, 01/12/2008 - 22:58

Hello Rob,

Thank you so much. I have been looking for this command for last two day.


brmmt1 Fri, 01/11/2008 - 03:03

Hi is it possible on a 1231 with 12.3(8)JEB?



This Discussion



Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode