10-07-2007 04:29 AM - edited 07-03-2021 02:43 PM
Hi there,
Is there any solution to restrict wlan based access based on ssid using layer 3 (web authentication)?
sample in this link: http://www.cisco.com/en/US/partner/tech/tk722/tk809/technologies_configuration_example09186a00807669af.shtml
uses only layer 2.
10-08-2007 07:58 AM
Hi Dave,
I couldn't find the link you provided :(
Have a look at this example, it sounds like what you are looking for;
Dynamic VLAN Assignment with RADIUS Server and Wireless LAN Controller Configuration Example
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008076317c.shtml
Hope this helps!
Rob
10-09-2007 03:49 AM
Hi Rob,
This is the link:
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807669af.shtml
Examples here are working in Layer 2 authentication method, but I need a solution in Layer 3 authentication method like Web Authentication.
08-09-2012 07:02 AM
hi David,
Did you manage to find a solution for this ? I have a similar requirement for using DNIS filtering for webauthentication and it doesnt seem to work.
regards
Joe
08-09-2012 11:07 AM
Joe:
With webauth it does not work by default because the wlc does not send the ssid name in called-station-id attribute.
You need to configure
he wlc to send the ssid along with the ap mac address n that attribute.
Use this command on wlc cli:
config radius callStationIdType {ip_address, mac_address, ap_mac_address, ap_macaddr_ssid}
Use the last option: ap_macaddr_ssid
Hope this helps.
Amjad
Sent from Cisco Technical Support iPad App
08-09-2012 07:18 AM
It sounds like you are looking for NAR.
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a0080858d3c.shtml
Steve
Sent from Cisco Technical Support iPad App
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: