Controller-less WLANs

How to Blacklist a client Manually in IAP

There might a need for network admin to block access to certain devices manually apart from the dynamic blacklist feature. The MAC address of the clients needs to known to get this accomplished.

 

Blacklist will avoid clients connecting to wireless.

If we know the MAC addresses of the clients, we can add those to the Blacklist table and they would not be able connect any longer to Aruba Wireless.
 
Please note, that in order for a user to be blacklisted, the "blacklisting" parameter must be enabled in the security setting of the SSID that the user is trying to connect to.
What this means is that if you have an "Employee" network and a "Guest" network and you have blacklisted a user, he will be denied access to the Employee network if you have blacklisting enabled in the Employee SSID, but that client will still be able to connect to the Guest network if you don't have blacklisting enabled in that SSID, so you need blacklisting enabled in both.

If you have user debugging configured, a client that has been blacklisted but is being rejected by the system will show up in the user logs.


Attached are the screenshots on how to accomplish this.
 
To add MAC address to the Blacklist table
 
Navigate to Security à  Blacklisting à Manual Blacklist à MAC address to Add
 
To enable Blacklist in the SSID 
 
SSID à Edit à Security à Blacklisting à Enabled

Version History
Revision #:
1 of 1
Last update:
‎06-26-2014 01:17 PM
Updated by:
 
Labels (1)
Contributors
Comments
stankVR

Hi

After I blacklist a client MAC address, I had always an "alarm" on my IAP that advise that a MAC address has been blacklisted manually. is it possible to disable it ?

Thanks

 

Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.