By default, client profiling will be disabled on all WLANs.
Client profiling is supported on access points that are in Local mode and FlexConnect mode.
Both DHCP Proxy and DHCP Bridging mode on the controller are supported.
Accounting Server configuration on the WLAN must be pointing at an ISE running 1.1 MnR or later releases. Cisco ACS does not support client profiling.
The type of DHCP server used does not affect client profiling.
If the DHCP_REQUEST packet contains a string that is found in the Profiled Devices list of the ISE, then the client will be profiled automatically.
The client is identified based on the MAC address sent in the Accounting request packet.
Only a MAC address should be sent as calling station ID in accounting packets when profiling is enabled.
To enable client profiling, you must enable the DHCP required flag and disable the local authentication flag.
Restrictions for Configuring Client Profiling
Profiling is not supported for clients in the following scenarios:
Clients associating with FlexConnect mode APs in Standalone mode.
Clients associating with FlexConnect mode APs when local authentication is done with local switching is enabled.
With profiling enabled for local switching FlexConnect mode APs, only VLAN override is supported as an AAA override attribute.
While the controller parses the DHCP profiling information every time the client sends a request, the profiling information is sent to ISE only once.
Information About Client Profiling
When a client tries to associate with a WLAN, it is possible to determine the client type from the information received in the process. The controller acts as the collector of the information and sends the ISE with the required data in an optimal form.
Configuring Client Profiling (GUI)
Choose WLANs to open the WLANs page.
Click the WLAN ID. The WLANs > Edit page appears.
Click the Advanced tab.
In the Client Profiling area, do the following:
To profile clients based on DHCP, select the DHCP Profiling check box.
To profile clients based on HTTP, select the HTTP Profiling check box.
Click Save Configuration.
Configuring Client Profiling (CLI)
Enable or disable client profiling for a WLAN based on DHCP by entering this command: