Hello, I have a new customer site and it will be a week or two before the radius server is available. Guest WiFi is working fine. Corp-WiFi I would like to secure as much as possible by using mac addresses of known devices otherwise I will disable it completely which is not ideal.
My logic (correct me if wrong) was to create a default role with Deny any to all. I would then create another Role Permit-WiFi-Mac.
The role assignment for Permit-WiFi-Mac would be 'If mac-address equals xx:xx:xx:xx:xx:xx assign role: Permit-WiFi-Mac". I would create a rule like this for each known device.
As yet I have not got it to work so a few questions:
1. Is this possible or is there another method to complete the same ?
2. Is the MAC in the correct format for the 'string' ?
3. If the MAC is in the correct format and matches the rule is it like most rule sets where a match is made from top to bottom and stops at the match or does it fall through and hit the default deny all ?
This is temporary and would really appreciate any advice.
Many thanks
------------------------------
Andrew Brown
------------------------------