Here's what I'm trying to accomplish:
Multiple VLANs in a high density school environment. My plan is to have each AP connected to a switch port that is a member of, or tagged for its respective VLAN. The school campus will be segmented per building so I'd like to have each AP only broadcast the SSID of the VLAN that the user is connected to. I'm treating this as if we'd have a Zone Director located remotely and managing APs in different AP and WLAN groups.
The VLANs are already functional and inter-vlan routing is enabled. Each switch is connected via trunk port and the core switch is connected via trunk port to the external router which handles the VLAN traffic. Aside from wireles traffic this is working fine.
The switch port every AP connects to is a member of the appropriate VLAN. The APs are also part of different groups and each group is assigned to the WLAN group for the SSID that users will connect to on that VLAN.
When I assign the WLAN to the VLAN ID that it should be a member of then I can't connect. If the WLAN is left as a member of VLAN ID 1 then I can connect but pull an address from the management VLAN.
Again, DHCP, VLAN routing, and the network in general work fine otherwise. How do I get wireless clients to connect to the appropriate VLAN? My goal is to have this campus segmented as if each building is a remote location and can only see SSIDs per that VLAN. Where am I going wrong?