Hi Guys,
Was hoping someoene could help me with Server rules...
To make things easier, we have 2 networks.
Corporate network - Radius Authentication - NPS = VLAN 20 Users subnet 10.17.1.0/24
Mobile Network - Radius Authentication - NPS = VLAN 33 Users Subnet 172.16.33.0/24
The Mobile network cannot see the corporate network, it only has Internet access.
A new subnet was created for IT ADMIN, VLAN 70, subent 10.17.7.0/24
Since we run NAC on the switches, we have applied rules to NPS to accomodate this range. So ITADMIN whcih are in a specific network group get VLAN 70 IP addressing.
Server rule = Filter-Id Equals WLAN-VLAN70 Set VLAN 70
This is great, until an ITADMIN users connects to the Mobile network. As i said, its a seperate network, enforced by a Firewall that assigns DHCP addresses of 172.16.33.0/24 to users.
How can i keep my existing rule but make an exception for the Mobile network?
Can a User Rule over-ride a server rule?
Must I use Roles somehow?
If only the SSID could be returned to the controller....
Hope someone can point me in the right direction...
Thanks