Wireless Access

Reply
Frequent Contributor II

initial-role question

When configuring a aaa-profile the inital roll should I be using denyall for preshared key ssid encryptions networks so firewall will not allow any access to the network?

Re: initial-role question

For PSK your initial role should be set to the final role (allowing access) that the user will get when successfully authenticating
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA

Re: initial-role question

For PSK your initial role should be set to the final role (allowing access) that the user will get when successfully authenticating
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Frequent Contributor II

Re: initial-role question

I guess I was confused because the user guide says initial roll is the roll someone gets who is NOT authenticated. I'm assuming the reason it has no factor is if one doesn't have the encryption key they aren't able to get associated anyway? 

Re: initial-role question

That's when you are doing a Captive Portal/ Layer 3 authentication , and in that case the initial role is the pre-auth/unauthenticated role
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA

Re: initial-role question

That's when you are doing a Captive Portal/ Layer 3 authentication , and in that case the initial role is the pre-auth/unauthenticated role
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: