Specifications
set location policy
Chapter 9
AAA Commands
220
Examples
The following command denies network access to all users at
*.theirfirm.com, causing them to fail authorization:
PROMPT# set location policy deny if user eq *.theirfirm.com
The following command authorizes access to the guest_1 VLAN for all users who
are not at *.wodefirm.com:
PROMPT# set location policy permit vlan guest_1 if user neq *.wodefirm.com
The following command authorizes users at *.ny.ourfirm.com to access the
bld4.tac VLAN instead, and applies the security ACL tac_24 to the traffic they
receive:
PROMPT# set location policy permit vlan bld4.tac outacl tac_24 if user eq
*.ny.ourfirm.com
The following command authorizes access to users on VLANs with names
matching bld4.* and applies security ACLs svcs_2 to the traffic they send and
svcs_3 to the traffic they receive:
PROMPT# set location policy permit inacl svcs_2 outacl svcs_3 if vlan eq bldg4.*
The following command authorizes users entering the network on UNIVERGE
WL Controller port 1 to use the floor2 VLAN, overriding any settings from AAA:
PROMPT# set location policy permit vlan floor2 if port 1
The following command places all users who are authorized for SSID
tempvendor_a into VLAN kiosk_1:
PROMPT# set location policy permit vlan kiosk_1 if ssid eq tempvendor_a
success: change accepted.
See Also
l clear location policy on page 190
l show location policy on page 246