From the controller GUI, click Security.It is necessary to configure the WLC so it can communicate with the RADIUS server to authenticate the clients, and also for any other transactions. Configure the Dynamic Interfaces (VLANs)Ĭonfigure the WLC with the Details of the Authentication Server.Configure the WLC with the Details of the Authentication Server.The SSID ( WLAN, in terms of WLC) of the client does not matter because the user is always assigned to this predetermined VLAN ID. These RADIUS attributes decide the VLAN ID that should be assigned to the wireless client. Once the authentication is successful, the RADIUS server passes certain Internet Engineering Task Force (IETF) attributes to the user. Therefore, when a client attempts to associate to a LAP registered with a controller, the LAP passes the credentials of the user to the RADIUS server for validation. This can be used, for example, to allow the wireless host to remain on the same VLAN as it moves within a campus network. This task of assigning users to a specific VLAN is handled by a RADIUS authentication server, such as Cisco Secure ACS. This type of setup is called “Dynamic VLAN Assignment”ĭescription: Dynamic VLAN assignment is one such feature that places a wireless user into a specific VLAN based on the credentials supplied by the user. Objective: To dynamically Assign Wireless User to VLAN based on user credentials.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |