Announcement

Collapse
No announcement yet.

Restrict access to Cisco Aironet 1200 by MAC address

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Restrict access to Cisco Aironet 1200 by MAC address

    Hi all

    Spent a little bit of searching trying to get our Cisco Aironet 1200 series wireless access points to only allow certain MAC addresses.

    My phone doesn't like to connect to an SSID which isn't broadcast. So i thought create another SSID but only allow the MAC address of my phone connect.

    I thought it would be simple, but everything i come accross talks about RADIUS and other stuff that i haven't a clue about. We have 15+ AP's so I want a simple way of doing it... any ideas?

    Thanks in advance.
    Server 2000 MCP
    Development: ASP, ASP.Net, PHP, VB, VB.Net, MySQL, MSSQL - Check out my blog http://tonyyeb.blogspot.com

    ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

  • #2
    Re: Restrict access to Cisco Aironet 1200 by MAC address

    not sure if this help?
    http://www.cisco.com/en/US/products/...f.html#1028504
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: Restrict access to Cisco Aironet 1200 by MAC address

      Hi Tony,

      Checkout this link:
      http://www.cisco.com/univercd/cc/td/....htm#wp1029067

      Looks like you could manually enter the MAC addresses or use Cisco ACS.

      Let us know if this is helpful or not.

      Thanks
      David
      David Davis - Petri Forums Moderator & Video Training Author
      Train Signal - The Global Leader in IT Video Training
      TrainSignalTraining.com - Free IT Training Products
      Personal Websites: HappyRouter.com & VMwareVideos.com

      Comment


      • #4
        Re: Restrict access to Cisco Aironet 1200 by MAC address

        Both those links have screen shots of what i can only assume is a very old IOS on the AP's.

        I think ive found where i needed to be. Security > Advanced Settings > MAC Authentication

        But it looks like this is per access point rather than per SSID.

        Oh well - bang goes that idea!
        Server 2000 MCP
        Development: ASP, ASP.Net, PHP, VB, VB.Net, MySQL, MSSQL - Check out my blog http://tonyyeb.blogspot.com

        ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

        Comment


        • #5
          Re: Restrict access to Cisco Aironet 1200 by MAC address

          Tony, this is easy to do if you have ACS. No other way I know of if you are running disparate access points. I know this means but ACS dovetails so neatly with ACS.

          Alternately- what about some higher security such as one of the flavours of 802.1x? Even WPA2, using a Windows box as a a certificate server? More involved, but easier to centrally manage when its all set up. There's an excellent guide here: http://www.ifm.net.nz/cookbooks/wpa_sbs2003/index.html

          on running this on SBS, but easily extrapolates to Win Server 2003.

          theterranaut

          Comment


          • #6
            Re: Restrict access to Cisco Aironet 1200 by MAC address

            Thanks for the suggestion but i want to spend nothing on this as it is for me, not really the company. Thanks anyway.
            Server 2000 MCP
            Development: ASP, ASP.Net, PHP, VB, VB.Net, MySQL, MSSQL - Check out my blog http://tonyyeb.blogspot.com

            ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

            Comment

            Working...
            X