Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 

WLC - Filter-Id attribute

Hello,

Does the WLC support Identity Based Networking, just like the Catalyst switches do on the wired network ?

Currently, we have a Microsoft AAA server that is able to pass a Filter-Id attribute to our Catalyst switches, specifying an ACL number to apply to the user's switchport. The Catalyst switches receive this Filter-Id attribute in the RADIUS response packet and apply the specified ACL to the switchport.

We are trying to achieve the same feature on our wireless network: A wireless client authenticatates to the AAA server and the AAA server replies with a RADIUS Accept message to the WLC. Is the WLC capable of understanding and applying Filter-Id attributes (referencing to already configured ACL's on the WLC) ?

TIA,

Joris

1 REPLY
Gold

Re: WLC - Filter-Id attribute

Yes, the controller supports identity-based networking and you can apply ACLs via the VSA's but you may need to load the Airespace VSA's to the IAS server for this to work.

http://www.cisco.com/en/US/docs/wireless/controller/6.0/configuration/guide/c60sol.html#wp1047266

1064
Views
0
Helpful
1
Replies
CreatePlease to create content