2 weeks ago
hi am new to Aruba WLC, we have 7010 controller installed as a standalone with 325 APs (5 qty).
we have two SSID (Name: Office & Guest), we are plananing to enable user based authentication to get the network access on office SSID users, our requirements are mentioned below.
1. Office SSID will configured with preshared Key, once we connected to office SSID with this preshared key user need to redirect to captive portal, so with captive portal user need to authenticte with Domain controller using their active directory username and password.
so for captive portal authentication on controller we are planning to use Radius Server authentication method, so for this we are planning to install Radius Server on our Domain controller or any domain member server.
could you please advice about can we achieve our requirements as per above mentioned plan if yes could you please share the configuration procedure for the same.
if no could you please suggest the solution to achieve our requirements.
Solved! Go to Solution.
2 weeks ago
The easy way would be to:
1. Use the WLAN/LANWizard (configuration> Wizards> Campus WLAN) and create a separate Captive Portal SSID
2. When you are finished, go into the AAA profile for your WPA2-PSK SSID and change the initial role to the logon role for your newly created SSID.
In short, there are quite a few profile that you have to configure to create a Captive Portal SSID. If you use the Wizard to Create Another SSID, you can simply change the Initial Role for your WPA2-PSK SSID to the "logon-***" role for your new SSID and you will have a Captive Portal on your PSK SSID. You will end up with another SSID, and you can simply remove the Virtual AP from the ap-group so that it does not broadcast.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base