Restrict Ssids By Using A Radius Server - Allen-Bradley Stratix 5100 User Manual

Restrict SSIDs by Using a
RADIUS Server
For example, this sample output from a show configuration privileged EXEC
command does not show spaces in SSIDs:
ssid buffalo
vlan 77
authentication open
ssid buffalo
vlan 17
authentication open
ssid buffalo
vlan 7
authentication open
However, this sample output from a show dot11 associations privileged EXEC
command shows the spaces in the SSIDs:
SSID [buffalo] :
SSID [buffalo ] :
SSID [buffalo
This command shows only the first 15 characters of the SSID. Use the
IMPORTANT
dot11 associations client
more than 15 characters.
To prevent client devices from associating to the access point by using an
unauthorized SSID, you can create a list of authorized SSIDs that clients must use
on your RADIUS authentication server.
The SSID authorization process consists of these steps:
1. A client device associates to the access point by using any SSID configured
on the access point.
2. The client begins RADIUS authentication.
3. The RADIUS server returns a list of SSIDs that the client is allowed to
use. The access point checks the list for a match of the SSID used by the
client. There are three possible outcomes:
a. If the SSID that the client used to associate to the access point matches
an entry in the allowed list returned by the RADIUS server, the client is
allowed network access after completing all authentication
requirements.
Rockwell Automation Publication 1783-UM006A-EN-P - May 2014
Configuring Multiple SSIDs
] :
command to see SSIDs having
Chapter 8
show
285