cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
432
Views
0
Helpful
4
Replies

Authentication question

d.muccillo
Level 1
Level 1

setup is cisco acs for authentication. clients use PEAP/WPA/TKIP. I need to assign a static ip address for a specific login as access will be restricted for this ip. the problem is the user can potentially connect to the wireless network obtaining another address and have access. how can i set the login under the acs to be mapped to that ip address?

4 Replies 4

Scott Fella
Hall of Fame
Hall of Fame

Why don't you just create a mac reservation in your dhcp server. That way they will always obtain the same ip address.

-Scott
*** Please rate helpful posts ***

I intend on doing that but i am concerned if they input a static ip address that is not the one assigned to them or use a different laptop, they would then still be able to sign on with the account created on the radius server.

Can you restrict the laptop?

Create another VLAN and assign that user via ACS to that VLAN?

Yes you can..... take a look at this doc. It should have all the info you need.

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a00808c9bd1.shtml

-Scott
*** Please rate helpful posts ***
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: