I'm trying to achieve dot1x authentication where radius server returns private-group-id which determines the role of the client. I wrote Server-Derivation Rule for that. But the issue is how will I configure it in ap configuration side? I created aaa profiles for each vlan.
I want single ssid and single ap group. The vap profile of the ssid will include all the vlans. But how can I associate all of the user roles with one ssid profile in one ap group. Is this such a thing possible or neccesarry? Any help will be appreciated!