Wireless Access

Reply
Frequent Contributor I

Block AD user to access wireless network

Which method is the best practice to block the Active Directory (AD) user access the wireless network? Configure on it Microsoft NPS or Aruba controller policy?

 

Now my customer authenticate through 802.1x by using NPS and AD. If configure at Aruba controller it is add block list under "Authenticated" profile?

 

Please advise

Guru Elite

Re: Block AD user to access wireless network

Do you want to block all users in AD from connecting to a specific wlan network?


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Frequent Contributor I

Re: Block AD user to access wireless network

Just want to block specific user on wlan network.

Guru Elite

Re: Block AD user to access wireless network

You should blacklist that user's device.  If you are using an AD group to provide access to the WLAN, you should remove that user from that AD group.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Frequent Contributor I

Re: Block AD user to access wireless network

They don't have AD group to provide wlan access.

If my customer's end users has multiple device, then have to blacklist few times for each user. 

 

Does it good practice create a group on Aruba controller to block end user?

Guru Elite

Re: Block AD user to access wireless network

You would block access via group on the NPS server in the remote access policy.  NPS is not very flexible, so blocking a single user is difficult, unless you are allowing access via a specific AD group and that user is not in the group.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Frequent Contributor I

Re: Block AD user to access wireless network

How to permenantly blacklist the end user device? Because i did try to blacklist the user devices but it only can blacklist 60 minutes. 

Guru Elite

Re: Block AD user to access wireless network

http://community.arubanetworks.com/t5/Controller-Based-WLANs/How-to-blacklist-users-permanently/ta-p/175712



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: