This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ExtremeControl & XIQ Controller - Policy Role - "Bridged@AP" VLAN

ExtremeControl & XIQ Controller - Policy Role - "Bridged@AP" VLAN

Guilhem_Lejeune
New Contributor III

Wednesday

Hi everyone,

I want to take advantage of pushing Policy Role (and only this) to XIQ Controller upon authentication.
My idea is :

  • Role with "Contain to VLAN X".
  • Accept Policy with my role only (no VLAN)
  • XIQ Controller as RADIUS client with "Extreme IdentiFi Wireless" in "RADIUS Attributes to Send".

I have noticed that, after Policy Enforce, VLAN (configured in XIQ SE/ExtremeControl in "Policy > Roles" menu) are pushed to XIQ Controller in "Bridged@AC" mode.

As expected, there was issue when testing ðŸ˜„

Is there a way to have these VLAN being pushed with "Bridged@AP" mode ?

Kind regards,

0 Kudos
4 REPLIES 4

Doug
Extreme Employee

Thursday

Are you using Filter-ID=<role name> to push the role (which should have a topology mapping) 

Doug Hyde
Sr. Director, Technical Support / Extreme Networks
0 Kudos

Guilhem_Lejeune
New Contributor III
In response to Doug

Thursday

Hi,

Yes. The preview shows me this :

Filter-Id=Enterasys:version=1:policy=<role_name>

Kind regards,

0 Kudos

Doug
Extreme Employee
In response to Guilhem_Lejeune

Thursday - last edited Thursday

So the user gets the correct role assigned (not the default one), but is not in the correct topology?  (check the end system report in XIQ-SE/Control (NAC)) 

Doug Hyde
Sr. Director, Technical Support / Extreme Networks
0 Kudos

Guilhem_Lejeune
New Contributor III
In response to Doug

Thursday

I will check again tomorrow and keep you in touch.

Thanks,

GTM-P2G8KFN