Filter
Top Products
560 Configuring AAA for network users
NN47250-500 (320657-F Version 02.01)
Overriding AAA-assigned VLANs
The following example shows how to change the VLAN access of wireless users in an organization housed in multiple
buildings.
Suppose the wireless users on the faculty of a college English department have offices in building A and are authorized
to use that building’s bldga-prof- VLANs. These users also teach classes in building B. Because you do not want to
tunnel these users back to building A from building B when they use their wireless laptops in class, you configure the
location policy on the WSS to redirect them to the bldgb-eng VLAN.
You also want to allow writing instructors normally authorized to use any -techcomm VLAN in the college to access the
network through the bldgb-eng VLAN when they are in building B.
1 Redirect bldga-prof- VLAN users to the VLAN bldgb-eng:
WSS# set location policy permit vlan bldgb-eng if vlan eq
bldga-prof-*
2 Allow writing instructors from -techcomm VLANs to use the bldgb-eng VLAN:
WSS# set location policy permit vlan bldgb-eng if vlan eq
*-techcomm
3 Display the configuration:
WSS# show location policy
Id Clauses
-----------------------------------------------------
1) permit vlan bldgb-teach if vlan eq bldga-prof-*
2) permit vlan bldgb-eng if vlan eq *-techcomm
4 Save the configuration:
WSS save config
success: configuration saved.