02-23-2015 06:51 AM
Aruba IAP-215s, trying to add mac filtering on an SSID using role based role assignment rules. There seems to be a limit of 17 rules allowed. Does anyone know of a workaround to add more rules? The SSID authenticates to corperate radius servers that are 3rd party controlled. We use additional mac filtering to restric use on a specific vlan to only engineers. I currently have this working well by using role based rules to assign role based on mac address. However, there seems to be a limit of 17 rules allowed and I am needing to allow more than this.
02-23-2015 06:54 AM
Long-term, you should consider using a policy engine like ClearPass as this setup can quickly become unmanageable.
Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
02-23-2015 07:13 AM - edited 02-24-2015 10:50 AM
I need to have a way to use enterprise authentication to our radius servers but do local mac filtering on this SSID. The only way I have found to do this on the IAP is to use the role based access but this solution seems to only be allowing me to add 16 MACs. I need to see if there is an IAP way to do this MAC filtering locally and authenticate to remote Radius.