Wireless Access

Reply
Occasional Contributor II
Posts: 16
Registered: ‎06-22-2016

802.1X SSID multiple VLAN via 7005

Hi,
once i tried integrating IAP to MS2008(AD and NPS) for single SSID to multiple VLAN and it worked smoothly thru PDF guides.

however im having confusion integrating ctrlr7005 to AD + L3 switch

a.gateway will be from L3 switch (VLAN 10) for " sales"
b.dhcp relay from ms2008 is already tested
c. AD domain already tested (vlan1, 192.68.1.58)
d.switch to ctrlr is in trunk mode
e.switch and ap135 is in trunk mode, tunnel
f. do still need to create VLAN10 on ctrlr?
g.server group and radius already setup on ctrlr
h.filter ID, sales, set vlan 10 on rules(anything else?)
i.AAA, initial= login, default role= authenticated, reauth and termination enabled, peap and ms chap checked.


still device cant get authentication and IP from vlan 10.

do i still need NPS for this?

any suggestions will be greatly appreciated

#AirheadsMobile
Guru Elite
Posts: 8,637
Registered: ‎09-08-2010

Re: 802.1X SSID multiple VLAN via 7005

If your SSIDs are in tunnel mode, you need to add the VLAN to the controller and tag it on the uplink.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
Showing results for 
Search instead for 
Did you mean: