Welcome to Cisco Support Community. We would love to have your feedback.
For an introduction to the new site, click here. And see here for current known issues.
How a wism talking to aaa server .? The wism will talk on behalf of the user ?
What i mean if there is an acl on the interface vlan ( switch) , Do we need to allow the aaa server in the access list ?
Yes you should AAA server on the ACL. Client data reaches in a CAPWAP tunnel between AP and WLC from where it is sent to wired network, so communication is done by WLC on behalf of client.
Usually, high level topology is like this :
**Encourage Contributors. RATE Them.**
what would be the source ip address , is it ssid's interface vlan ip ?