Wireless Access

Reply
Moderator
Posts: 946
Registered: ‎07-29-2010

DNIS-based authorization

Hello

 

One of our customer has some instant APs with 2 SSIDs, Corporate and Guest. They want to authenticate both WLANs using different user groups in the same ACS 4.2 server. When using Cisco APs or controllers, the SSID is sent as part of the Called-station-id (or DNIS) field. Do any of you guys know if this works in the same way for Aruba IAPs?

 

Thanks for the help

 

Regards

 

 

Samuel Pérez
ACMP, ACCP, ACDX#100

---

If I answerd your question, please click on "Accept as Solution".
If you find this post useful, give me kudos for it ;)
Aruba Employee
Posts: 664
Registered: ‎04-15-2009

Re: DNIS-based authorization

I am not sure about IAP, but on the controller based APs, you can have a separate AAA profile for each SSID, then send the name of the SSID in the NAS-ID.  Aruba doesnt send the SSID name.  Once you get the NAS-ID, you can make the decision in the RADIUS server on which group you use to auth users.

 

Someone more familiar with IAP can comment on whether NAS-ID is an option

Aruba
Posts: 1,644
Registered: ‎04-13-2009

Re: DNIS-based authorization

To confirm Olin's thoughts, the NAS Identifier option is available on the Radius server setting on an IAP.

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Search Airheads
Showing results for 
Search instead for 
Did you mean: