Specifications
OmniAccess Reference: AOS-W System Reference
346 Part 031652-00 May 2005
Role Mapping
From the Web UI, you can perform role mapping based on SSID and
encryption. These two methods are discussed in the following sections. From
the CLI, you can perform role mapping on BSSID, location, and MAC address in
addition to SSID and encryption. To access role mapping from the CLI, enter:
SSID Role Mapping
This feature enables roles to be assigned based solely on the ESSID to which a
client associates.
This method of role assignment bypasses authentication and should therefore
be combines with a strong firewall policy.
Configure SSID Role Mapping by navigating to the
Configuration > Authentication
Methods > SSID
page.
(OmniAccess 6000) (config) #aaa derivation-rules user
(OmniAccess 6000) (user-rule) #?
no Delete Command
set The action for the rule
(OmniAccess 6000) (user-rule) #set ?
role The action of the rule is to set to role
vlan The action of the rule is to set to vlan
(OmniAccess 6000) (user-rule) #set role condition ?
bssid BSSID of access point
encryption-type Encryption method used by station
essid ESSID of access point
location location of user in building.floor.location format
macaddr MAC address of user