Configuring multiple basic ssids – Rockwell Automation 1783-WAPxxx Stratix 5100 Wireless Access Point User Manual User Manual

Page 286

Advertising
background image

286

Rockwell Automation Publication 1783-UM006A-EN-P - May 2014

Chapter 8

Configuring Multiple SSIDs

b. If the access point does not find a match for the client in the allowed list

of SSIDs, the access point disassociates the client.

c. If the RADIUS server does not return any SSIDs (no list) for the client,

then the administrator has not configured the list, and the client is
allowed to associate and attempt to authenticate.

You must use the list of SSIDs from the RADIUS server in the form of Cisco
VSAs. The Internet Engineering Task Force (IETF) draft standard specifies a
method for communicating vendor-specific information between the access
point and the RADIUS server by using the vendor-specific attribute (attribute
26).

Vendor-specific attributes (VSAs) let vendors support their own extended
attributes not suitable for general use. The Cisco RADIUS implementation
supports one vendor-specific option by using the format recommended in the
specification. The Cisco vendor-ID is 9, and the supported option has vendor-
type 1, that is named

cisco-avpair

. The Radius server can have zero or more

SSID VSAs per client.

In this example, the following AV pair adds the SSID batman to the list of
allowed SSIDs for a user:

cisco-avpair= ”ssid=batman”

For instructions on configuring the access point to recognize and use VSAs, see
the

Configuring the Access Point for Vendor-proprietary RADIUS Server

Communication on page 425

.

Configuring Multiple Basic
SSIDs

Access point 802.11a, 802.11g, and 802.11n radios support up to 8 basic SSIDs
(BSSIDs), that are similar to MAC addresses. You use multiple BSSIDs to assign
a unique DTIM setting for each SSID and to broadcast more than one SSID in
beacons. A large DTIM value increases battery life for power-save client devices
that use an SSID, and broadcasting multiple SSIDs makes your wireless LAN
more accessible to guests.

Devices on your wireless LAN that are configured to associate to a specific access
point based on the access point MAC address (for example, client devices,
repeaters, hot standby units, or workgroup bridges) can lose their association
when you add or delete a multiple BSSID. When you add or delete a multiple
BSSID, check the association status of devices configured to associate to a specific
access point. If necessary, reconfigure the disassociated device to use the new
BSSID MAC address.

Advertising
Popular Brands
Popular manuals