[tonyyeb]

Hi all

Spent a little bit of searching trying to get our Cisco Aironet 1200 series wireless access points to only allow certain MAC addresses.

My phone doesn't like to connect to an SSID which isn't broadcast. So i thought create another SSID but only allow the MAC address of my phone connect.

I thought it would be simple, but everything i come accross talks about RADIUS and other stuff that i haven't a clue about. We have 15+ AP's so I want a simple way of doing it... any ideas?

Thanks in advance.

[Dumber]

not sure if this help?
http://www.cisco.com/en/US/products/...f.html#1028504

[daviddavis]

Hi Tony,

Checkout this link:
http://www.cisco.com/univercd/cc/td/....htm#wp1029067

Looks like you could manually enter the MAC addresses or use Cisco ACS.

Let us know if this is helpful or not.

Thanks
David

[tonyyeb]

Both those links have screen shots of what i can only assume is a very old IOS on the AP's.

I think ive found where i needed to be. Security > Advanced Settings > MAC Authentication

But it looks like this is per access point rather than per SSID.

Oh well - bang goes that idea!

[theterranaut]

Tony, this is easy to do if you have ACS. No other way I know of if you are running disparate access points. I know this means £££ but ACS dovetails so neatly with ACS.

Alternately- what about some higher security such as one of the flavours of 802.1x? Even WPA2, using a Windows box as a a certificate server? More involved, but easier to centrally manage when its all set up. There's an excellent guide here: http://www.ifm.net.nz/cookbooks/wpa_sbs2003/index.html

on running this on SBS, but easily extrapolates to Win Server 2003.

theterranaut

[tonyyeb]

Thanks for the suggestion but i want to spend nothing on this as it is for me, not really the company. Thanks anyway.