Hello fellas,
i configured an SSID with PSK in CAPsMAN and an access list that contains “query radius” as the action.
I want to be able to move the devices based on mac address to different vlans.
Everything works so far, if I add the mac(user) to the UserManager database the client is correctly accepted and moved to the vlan in the profile.
Obviously, if the mac address is not in the UserManager the client gets rejected.
But, would it be possible to configure a default vlan, for users that get rejected?
(I tryed to add 00:00:00:00:00:00 as “all mac default user”, to UserManager, but it didn’t work)
Or is there a possible setup, like in dot1x for LAN, when it runs into an auth. timeout, that the device gets into a default vlan?
Would an other RADIUS solution be able to give a default vlan, if no specific mac(user) is configured?
I’m grateful for every suggestion!