Forum Discussion

BobLiton's avatar
BobLiton
Copper Contributor
Feb 07, 2022

NPS question: Computers and Users, separate polices for wireless

Hi Friends,

 

Question about having two NPS policies on the same box, one for AD Computer Groups and another policy for AD User groups.

 

I've got an existing NPS policy setup which works great for allowing computers in a specific AD group tp join a wireless network. We are using SonicWALL (and their SonicWAVE AP) and the Sonic policy on the AP directs computers matching the policy to a specific VLAN. Works Great.

 

Now I want to have a second policy for user objects (end users) in a specific AD group to authenticate and be placed into a separate VLAN. I can get it working on a NPS servers but Id rather it be on the same NSP server as an additional policy.

 

Is there some sort of RADIUS flag(?) or something I have to do to keep the two policies separate? In the Sonic AP policy under RADIUS I can specify one of three choices for NAS Identifier types:  

1. Access Point Name

2. Access Point MAC Address

3. SSID

 

SSID sounds promising because this policy is for a different SSID.

 

I don't see any other settings.

 

Any help appreciated!

Cheers,

BL

No RepliesBe the first to reply

Resources