Security

Reply
Frequent Contributor II
Posts: 106
Registered: ‎01-01-2012

MAC + PSK user roles and blacklisting

Hi,

 

I have created a VAP profile having 2 authentication methods, MAC and PSK .

Created MAC authenticated role as Guest.

and for PSK it is authenticated.

But the clients are getting role based on MAC auth only (ie. guest )...as shown on controller > monitoring.

 

also I want to set client  blacklisting after 2 failed auths...

this is working for Guest (if captive portal auth fails)...but for MAC + PSK auth SSID, if  MAC auth fails client goes to Blacklist.

but its not happening when MAC auth is done and PSK fails.

 

Thanks

Guru Elite
Posts: 20,396
Registered: ‎03-29-2007

Re: MAC + PSK user roles and blacklisting

 


newbie wrote:

Hi,

 

I have created a VAP profile having 2 authentication methods, MAC and PSK .

Created MAC authenticated role as Guest.

and for PSK it is authenticated.

But the clients are getting role based on MAC auth only (ie. guest )...as shown on controller > monitoring.

 

also I want to set client  blacklisting after 2 failed auths...

this is working for Guest (if captive portal auth fails)...but for MAC + PSK auth SSID, if  MAC auth fails client goes to Blacklist.

but its not happening when MAC auth is done and PSK fails.

 

Thanks




With mac+psk, the mac authentication role takes precedence.

 

Blacklisting only takes place for mac authentication, not for failed PSK.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: