Skip to main content

5 Messages

 • 

124 Points

Tue, Nov 13, 2018 10:33 AM

Answered

RADIUS ACL attributes

Can`t find how to assign ACL with Access-Accept RADIUS response and what attributes to use.
Want to know how to assign ACL via sending id and via sending ACL rules in Access-Accept RADIUS response

Responses

Brand User

2.6K Messages

 • 

44.8K Points

2 years ago

I don't think ACL is a valid attribute-value pair for RADIUS with Ruckus dictionary file.
https://support.ruckuswireless.com/articles/000005220

388 Messages

 • 

5.9K Points

2 years ago

Try to apply a filter-id as Radius-attribute.

Or try to apply RBAC using Ruckus-User-Groups as Radius-arrtibute.

I do remeber a filter-id was working on ZD(10.0 above) and Ruckus-User-Groups is working on SZ100(3.5 above) and ZD.

Try those.

5 Messages

 • 

124 Points

Thanks! I see that via FILTER-ID I can deliver id, but I need also to deliver ACL rules.

388 Messages

 • 

5.9K Points

Yes. Ruckus don't have a attribute like cisco downloadable acl.

You have to use predefined acl or role.

5 Messages

 • 

124 Points

5 Messages

 • 

124 Points

But only this statement. No proofs..

388 Messages

 • 

5.9K Points

Do you want to apply that to any product? Wireless Product like SZ/ZD or Wired Product like ICX switch?

4 Messages

 • 

100 Points

2 years ago

I had the same issue thanks for the help ! 

4 Messages

 • 

100 Points


388 Messages

 • 

5.9K Points

2 years ago

I have tested this.

I did successful dynamic acl using icx and filter-id on freeradius.

In this URL, I shared configuration and result using excel sheet below.
https://drive.google.com/open?id=1AohCD86AygWw-re8bvTDOsO2663pvrGg

But I failed this using named acl.

It works good using only number acl on ver 0.8.0.70(exaclty SPR08070b).

Please someone confirm this point.

Good luck.