Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Community Member

WLAN Profile question

We happen to have a very large open wireless implementation that uses an external webauth page that authenticates against our RADIUS.  We are also using the Lobby Ambassador for employees that drop in for a week or two at a time, and those users are on the same SSID as everyone else.

For obvious reasons, we want to secure our SSID with WPA2-802.1x.  When we do this our Lobby Ambassador will no longer function since those temporary usernames and passwords will be in the controllers.

My question is this:  Is there a way to use WLAN Profiles so that I can have a profile for WPA2 and our Lobby Ambassador under the same SSID?   I understand the Lobby Ambassador users won't be secure and this isn't the best practice, but can it be done?

Thanks in advance,


Community Member

Re: WLAN Profile question

Hi Tim

No, you can’t have different security policy under one SSID. If you enable WPA/WPA2 with 802.1X, all client must use this to authenticate. But there shouldn’t be any problem to have two SSID, one for employees and one for external users, like guests and consultants.

Kind Regards


CreatePlease to create content