Alcatel-Lucent omniaccess User Manual

Part 031650-00

May 2005

2

User derivation rules: The administrator can configure these rules to match 

a user characteristic in different ways to values to derive a role for the user. 
The various user characteristics that can be used to derive a user role are:

z

BSSID of the Access Point that client is associated to.

z

Encryption type used by the client.

z

ESSID that the client is associated to.

z

Location of the Access Point that the client is associated to.

z

MAC address of the client.

As an example, the administrator can configure a rule to assign the role 
“VoIP-Phone” to any client that has a MAC address that starts with bytes 
xx:yy:zz. 

3

Default role for an authentication method: Every authentication method can 

be derived with a default role for users that are successfully authenticated 
using that method. Refer to the guides to configure each of the authentica-
tion method (802.1x, VPN, Captive Portal) for more details on how to con-
figure the default role for each authentication method.

As an example, the administrator can configure the default role of all users 
authenticated using 802.1x as “employee”. 

This section describes the steps to configure the rules that constitute a policy. 
This policy can then be applied to a user role (until the policy is applied to a 
user role, it does not have any effect).

To create a new policy:

1. Navigate to the 

 page on the WebUI.