Hi,
I am trying to achieve the following :
I have one WLAN bridged to my LAN - the users are authenticated via a radius (Windows Network Policy Server) - this works fine, I created a security group and no problem to go for it.
The second WLAN (different SSID) is just for guests and internal users. Authentication is done here by password/voucher. No problem either.
I now want to make life easier to my internal users (BYOD) and allow the authentication based upon their AD-credentials.
My problem is that in this scenario I will have 3 SSIDs, Guests, Surf and LAN - Guests is clear. But how can I avoid that "Surfers" connect to LAN... I did not yet find where I can define that.
Any ideas ... or maybe I need to change my concept as well.
Pascal
This thread was automatically locked due to age.
