Dell PowerConnect W-IAP92 Dell Instant 6.2.0.0-3.2.0.0 User Guide - Page 149
User VLAN Derivation, Vendor Specific Attributes (VSA)
View all Dell PowerConnect W-IAP92 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 149 highlights
Chapter 13 User VLAN Derivation User VLAN Derivation W-Instant allows you to assign a user VLAN based on user attributes. When an external RADIUS authentication server is used for authentication, the user VLAN can be derived from Vendor Specific Attributes (VSAs). The user VLAN can be derived in 802.1X authentication or MAC authentication using the following rules: l Vendor Specific Attributes (VSA) l VLAN derivation rule l User role l SSID Profile The user VLAN cannot be derived in the following scenarios: l Captive Portal authentication l Guest SSID network Vendor Specific Attributes (VSA) When an external RADIUS server is used, the user VLAN can be derived from the Dell-User-Vlan VSA. The VSA is then carried in an Access-Accept packet from the RADIUS server. The W-IAP can analyze the return message and derive the value of the VLAN which it assigns to the user. Figure 108 - RADIUS Access-Accept packets with VSA Dell PowerConnect W-Series Instant Access Point 6.2.0.0-3.2.0.0 | User Guide 149 | User VLAN Derivation