Local Policies
Controller can do profiling of devices based on protocols such as HTTP, DHCP, and so on to identify the clients. You can configure the device-based policies and enforce per-user or per-device policy on the network. The controller also displays statistics that are based on per-user or per-device end points and policies that are applicable per device. The maximum number of policies that you can configure is 64.
The policies are defined based on the following attributes:
-
User group or user role
-
Device type such as Windows clients, smartphones, tablets, and so on
-
Service Set Identifier (SSID)
-
Location, based on the access point group that the end point is connected to
-
Time of the day
-
Extensible Authentication Protocol (EAP) type, to check what EAP method that the client is getting connected to
When these policy attributes match, you can define the following actions:
-
Virtual local area network (VLAN)
-
Access control list (ACL)
-
Quality of Service (QoS) level
-
Session timeout value
-
Sleeping client timeout value
This section contains the following subsections: