Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

FlexConnect with RADIUS Vlan assignment

I'm using the Cisco virtual controller with a handful of access points in Flexconnect mode.  I'm running version 7.5. 

I'm using the Microsoft NPS (2008 R2) for right now.  I can authenticate a domain computer and assign it to the admin vlan and everything works great.  I also have a guest vlan that I'm authorizing based on a domain user group and that's working great.

That allows me to specify a vlan ID (number).  The issue is that the appropriate vlan ID is different across buildings on a campus.  (layer 2 access switches trunked up to the distribution switches)  I know I could create different authorization policies for each flexconnect group, but that will get out of hand as we go forward.

What I'm looking for is the ability to specify a vlan "name" in the RADIUS authorization rule.  Then on the controller we would map that name to a vlan ID at the FlexConnect group.  Is this possible today?  Or is this a feature request?

Thanks.

3 REPLIES

FlexConnect with RADIUS Vlan assignment

Unfortunately returning (using!) a VLAN name in the Radius response is only possible with centrally switched traffic today...

New Member

FlexConnect with RADIUS Vlan assignment

Is this a roadmap item?

FlexConnect with RADIUS Vlan assignment

Doubtful... Only the switch knows the local VLAN names; they're not propagated up to the AP from the switch so it can't translate the name to an ID.

239
Views
0
Helpful
3
Replies
CreatePlease login to create content