This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 

advice on client scheduling and restrictions

advice on client scheduling and restrictions

Go to solution
admin32
New Contributor

ā€Ž07-30-2020 05:12 AM

In a school environment we have user profiles that have appropriate availability schedules based on student age levels , bedtime disconnection of client devices, different weekend schedules to school day schedules etc. This  has worked for couple of years ok, Apart from the overnight disconnected state causes the networks health scores to look really bad permanately

Now I am tasked with users needing access to one site (semi permanently) so basically some sort of firewall policy involved that overides the actual permitted scheduled hours for that site/app. One particular site that needs wifi but all other access is regulated to the predetermined times.

 

So looking for possible redirection of user profiles depending on time schedules

or

Do I actually reconfigure to have  students connected 24hrs a day, with dns, ip etc, (solving the health scores hopefully)

and then have some sort of complex firewall policy with time based allowance levels or redirections to allow or disconnect internet traffic to schedules.

i donā€™t actually think what iā€™m asking is achievable without 3rd party firewall controls externally to aerohive but open to suggestions

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
SamPirok
Community Manager Community Manager
Community Manager

ā€Ž09-10-2020 12:47 PM

Thank you for clarifying, I donā€™t think that is something we can do in the XIQ set up, I believe you would need to use your network firewall for that level of granular control. 

View solution in original post

0 Kudos
6 REPLIES 6

Go to solution
admin32
New Contributor

ā€Ž09-08-2020 09:29 PM

Hi Sam

Thanks But thatā€™s confused me totally. The SSID user profile section doesnā€™t have a scheduling section that I can see?

there is a SSID schedule setting under additional settings but canā€™t see thatā€™s relevant.

We have a list of user profiles under the ā€œapply different user profiles to various clients and user groupsā€

each one is, through radius selecting a year group and has a corresponding assignment rule and an availability schedule already setup in the user profile

are you saying to create a new user profile at the top of the list when you say rule?

a profile using the same criteria of radius attributes, vlan assignments etc as the existing profile but with its own independent schedule and a traffic firewall that will apply first because its higher in the list.

0 Kudos

Go to solution
SamPirok
Community Manager Community Manager
Community Manager

ā€Ž09-08-2020 08:02 PM

Thank you for your patience while we looked in to this for you. If you go in to the SSID User Profile section and check ā€œApply a different user profile to various clients and user groupsā€, you should then see the scheduling section. To allow access to one site while keeping your other rules/restrictions in place, just add the rule allowing access to the permanently accessible site first, and then the rest of your rules after that. The rules are applied in a top down order, so the rule to allow access to that site will be applied before any of the rules restricting access to other sites are applied. Is that what you were looking for?

0 Kudos
GTM-P2G8KFN