Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
478
Views
10
Helpful
3
Replies

two separate RADIUS servers for one WLC

axfalk
Level 1
Level 1

‎05-30-2008 07:45 AM - edited ‎07-03-2021 03:57 PM

Would it be possible to have two separate RADIUS servers on the same 4400 WLC, assuming a wireless user would only be accessing them one at a time? If it's, how would a user select the RADIUS server he would like to authenticate to?

Thanks.

Labels:
0 Helpful
3 Replies 3

Scott Fella
Hall of Fame
Hall of Fame

‎05-30-2008 08:49 AM

The wlc will only use the 1st radius server that it can communicate with. If that radius server later becomes unavailable, then the wlc will use the second radius server configured. The bad part is that if the primary or first radius server comes back online, the wlc will not use it until the second radius server becomes unavailable.

The only way to force it is to reboot the wlc or palce the secondary radius in the primary spot and hit apply then add the primary radius server back in its spot along with the secondary.

-Scott
*** Please rate helpful posts ***

jeromehenry_2
Level 3
Level 3
In response to Scott Fella

‎05-30-2008 09:50 AM

Another way is to use one radius per SSID, this might be a way to load balance, but the user still won't be able to choose...

Scott Fella
Hall of Fame
Hall of Fame
In response to jeromehenry_2

‎05-30-2008 04:39 PM

You have to watch out for that and might want to test it. I believe even though you have a ssid's using separate radius servers, which ever is the first radius the wlc communicates with, it will use. So in this case.... no matter what radius server you choose to point to, it will use the first one.

It is like if you have an ssid configured for peap using radius 1 and then you have an ssid using webauth and no radius servers configured..... users will still be able to use their AD username and password to authenticate via WebAuth.

-Scott
*** Please rate helpful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card