Hello kdisc98
Nothing change on the logon role.
(Controller) #show aaa timers
Global User idle timeout = 300 seconds Auth Server dead time = 10 minutes Logon user lifetime = 5 minutes User Interim stats frequency = 600 seconds
user-role denyall
user-role logon
captive-portal "default"
access-list session ra-guard
access-list session logon-control
access-list session captiveportal
access-list session vpnlogon
access-list session v6-logon-control
access-list session captiveportal6
user-role SH-Shop-Authenticated
access-list session allowall
wlan virtual-ap "St_Shop_Corp"
aaa-profile "St_Shop-aaa_prof"
ssid-profile "St_Shop_Corp-ssid-prof"
vlan 230
forward-mode bridge
allowed-band a
no broadcast-filter arp
auth-failure-blacklist-time 5
blacklist-time 5
no mobile-ip
vlan-mobility
aaa profile "St_Shop-aaa_prof"
initial-role "denyall"
authentication-mac "St_Shop_MAC-prof"
mac-default-role "SH-Shop-Authenticated"
mac-server-group "St_Shop_rad-server"
authentication-dot1x "St-PS-PSK-Profile"
dot1x-default-role "logon"
wlan ssid-profile "St_Shop_Corp-ssid-prof"
essid St@PS
opmode wpa2-psk-aes
a-tx-rates 36 48 54
max-clients 128
no disable-probe-retry
wpa-passphrase c5f059c561181e2f317411b407609ccb8955b1048bc374ff99ce9ecf445ef35793c74b62c89f3b03
Hope this is enough.