Community Feedback

Reply
Occasional Contributor II

assign multiple vlans from clearpass using IAP

Dears,

i need to assign multiple vlans from clearpass on the same SSID according to user credentials on AD using IAP

Highlighted

Re: assign multiple vlans from clearpass using IAP

Why? You know you'll need to trunk all these VLANs to each IAP right?

You have a highly configurable role based access system. Unless you have a specific use case that specifies you must use VLAN separation I would assign roles (with appropriate firewall policies if necessary) rather than VLANs.

Cheers
James
----------------------------------------------------------------------
--------------------------@whereisjrw--------------------------
---------------------------------blog-------------------------------
ACCX #540 | ACMX #353 | ACDX #216 | AMFX #11
----------------------------------------------------------------------
----------------------------------------------------------------------

If a reply adequately addresses your issue, please click on the "Accept as Solution" and "Give Kudos" button so this information can benefit other users via search.
Highlighted
Occasional Contributor I

Re: assign multiple vlans from clearpass using IAP

As jrwhitehead mentions, I would probably go back to the drawing board for this one. Although it is completely possible if you trunk the VLAN to all the IAPs. 

Configure profiles using the Aruba-User-Vlan (2) attribute, create a policy matching your user credentials to the desired profiles and match the flow in a service.