Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Restrict access to SSID using ACS NAR

Hi,

I currently have 2 ssid's one is for trusted users, the other is for non trusted but employees. Guest access is completely different.

I have a mixture of lightweight and fat AP's as we are undergoing migration.

I have setup a NAR on the two groups using DNIS *(trusted-ssid).

This seems to allow access for the lightweight AP's howevetr they can still use the untrusted credentials to access the trusted network.

On the fat Ap's it seems to not see the SSID and filters all trusted users out.

Is there a better way of doing this??

Is the syntax for matchign the ssid different on fat AP's?

Cheers

scott

2 REPLIES
Community Member

Re: Restrict access to SSID using ACS NAR

Just a bit more background, I am backing off auth to AD and using group match. Just need a way to tie the groups to one SSID and not allow them to use both.

Thanks

Scott

Community Member

Re: Restrict access to SSID using ACS NAR

Ok, now got the LwAP AP's to work, however the FAt AP's dont seem to match the DNIS *SSID syntax, is there an alternative for fat AP's??

Cheers

Scott

168
Views
0
Helpful
2
Replies
CreatePlease to create content