×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

WLC MAC as calling station ID with ACS 5.2

Answered Question
Oct 19th, 2013
User Badges:

Hi,


i know how to peer WLC and ACS for RADIUS using ip addresses. But how i can configure to register WLC in ACS by WLC mac address (and not using the IP). I can see an option in the WLC (Security/Radius/Authenticatoin and there is an option for "Calling Station ID") however, i need some help how to tell ACS server that registers WLC as RADIUS client with the MAC address and not WLC IP.


Thanks,

Correct Answer by Jatin Katyal about 3 years 10 months ago

Waqas,


That is correct.


This Attribute allows the NAS to send in the Access-Request packet
the phone number that the call came from, using Automatic Number
Identification (ANI) or similar technology.  It is only used in
Access-Request packets.

http://tools.ietf.org/html/rfc2865#section-5.31

RADIUS Authentication Attributes Sent by the Controller

http://www.cisco.com/en/US/docs/wireless/controller/7.4/configuration/guides/consolidated/b_cg74_CONSOLIDATED_chapter_0101100.html#ID676



~BR
Jatin Katyal

**Do rate helpful posts**

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Jatin Katyal Sat, 10/19/2013 - 12:20
User Badges:
  • Cisco Employee,

WLC or no other device can be added (as a AAA client) on ACS with a MAC address. In order to add WLC on ACS as a AAA client (radius or tacacs) you can only use IP address.



~BR
Jatin Katyal

**Do rate helpful posts**

George Stefanick Sat, 10/19/2013 - 12:23
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Best Publication, October 2015

To add to the response. The calling station is specific to the clients, in this case, wireless client authentication. An IP address is required under NAD ..

Sent from Cisco Technical Support iPad App

wg wireless Sat, 10/19/2013 - 12:37
User Badges:

so it means that "Calling Station ID" in WLC means it refers to the wireless clients and not the NAD (WLC in this case). So what i understand now that ACS will always identify WLC from its IP address and calling station ID is something for end clients carried by WLC to ACS. am i correct?

Correct Answer
Jatin Katyal Sat, 10/19/2013 - 12:52
User Badges:
  • Cisco Employee,

Waqas,


That is correct.


This Attribute allows the NAS to send in the Access-Request packet
the phone number that the call came from, using Automatic Number
Identification (ANI) or similar technology.  It is only used in
Access-Request packets.

http://tools.ietf.org/html/rfc2865#section-5.31

RADIUS Authentication Attributes Sent by the Controller

http://www.cisco.com/en/US/docs/wireless/controller/7.4/configuration/guides/consolidated/b_cg74_CONSOLIDATED_chapter_0101100.html#ID676



~BR
Jatin Katyal

**Do rate helpful posts**

Actions

This Discussion

 

 

Trending Topics - Security & Network