Manualshelf

User's Manual

ManualsBrandsAirgo Networks ManualsElectronicsTrue MIMO Access Point
31323334353637383940
2 Planning Your Installation
20 Installation and User Guide: Airgo Access Point
Example 3: Mid-size business, multiple SSIDs, multiple VLANs
Now a successful business, the management at Acme Works wants to position the company for
continued growth. Management decides to deploy an external RADIUS server to manage user
authentication centrally for the entire company. The RADIUS authentication infrastructure works
well for a changing user population (employees joining, leaving, or moving to new departments)
and readily supports further network service enhancements.
The company creates two SSIDs as a way to separate the Finance department network traffic from
the main corporate network traffic. Two RADIUS servers are configured, each in its own
authentication zone. To separate Finance department traffic from the overall network traffic, a
Finance VLAN is created. A Finance service profile is also created and bound to the Finance SSID.
The service profile is configured to include the Finance VLAN, high security, and higher-than-
normal COS. Once this structure is in place and a member of the Finance group is authenticated by
way of the RADIUS server, the Finance group tag is passed to the Airgo AP, and the Finance
service profile is applied to the user.
The network configuration for this example is shown in Figure 9, and the feature decisions are
shown in Figure 10.
Figure 9: Example 3 Network
RADIUS
Server
RADIU
S
Server
A0044B
Corporate VLAN
Corporate VLAN
VLAN Switch
Finance VLAN
Finance VLAN
Corporate Finance