cancel
Showing results for 
Search instead for 
Did you mean: 

How to assign VLAN as per AP/WLAN group using policies in Cloudpath

sagar_kuber
RUCKUS Team Member

Requirement/Use case: There are multiple locations which are segregated through AP/WLAN group in SmartZone controller. Now different VLAN ID to be assigned as per the location.

Prerequisites:

  • 802.1x SSID with Cloudpath as AAA with default ‘Radius options’
  • Cloudpath 5.7 and above
  • Vsz/sz 5.0 and above
  • Segregate the locations using WLAN/AP group.

In SmartZone controller:

Go to > WLAN > Group 1 > Edit > Select WLANs > Toggle ‘NAS-ID’ to ‘User Defined’ then mention ‘Group1’  (Required attribute value)

sagar_kuber_0-1711094042225.pngsagar_kuber_1-1711094616437.pngsagar_kuber_2-1711094631129.png

 

In Cloudpath:

Step 1: Go to >  Configuration > Policies > RADIUS Attribute Groups > Add RADIUS Attribute Group > Under ‘VLAN ID’ mention desired VLAN

sagar_kuber_3-1711095973051.pngsagar_kuber_4-1711095985879.png

Step 2: : Go to >  Configuration > Policies > Policies > Add Policy > NAS Identifier (regex): ‘Group1’ (Mention the ‘User Defined’ value set as ‘NAS-ID’ in Vsz WLAN group)

sagar_kuber_5-1711096006860.pngsagar_kuber_6-1711096015213.png

Step 3a: If Certificate based Authentication

Go to > Certificate Authority > Manage Templates >  Certificate Template > Manage > Radius Policies > +Assign Policy ‘Group1’

sagar_kuber_7-1711096031207.pngsagar_kuber_8-1711096037901.png

Step 3b: If eDPSK based Authentication

Go to > Configuration > DPSK Pools > Manage > Radius Policies > +Assign Policy ‘Group1

sagar_kuber_9-1711096054655.pngsagar_kuber_10-1711096061539.png

0 REPLIES 0