LANCOM Support Knowledgebase Document No. 1903.0812.0836.RHOO - V1.80

LEPS-MAC: Using the station table on the LANCOM WLAN Controller as a blacklist



Description:

This document shows how to use the station rule table in the WLAN controller to deny WLAN access to certain devices based on their MAC address.



Requirement:

The LANCOM access point must be operating WPA2 encryption.



Procedure:

1) Enable the MAC check in the logical SSID

1.1) In the menu WLAN Controller -> Profiles -> Logical WLAN Networks (SSIDs) create the SSID with the desired parameters.

The following items are important for using LEPS MAC:
  • Activate the MAC check and
  • Use WPA version WPA2.




2) Store the MAC address in the station table:

2.1) In the menu WLAN Controller -> Stations/LEPS -> Station rules, set the MAC address to the unwanted MAC address.

2.2) Set the passphrase to a generated key of maximum security.



The only way for this client to login is with this very long WLAN key. The passphrase used in the logical profile is no longer available to the client.

2.3) Write the configuration back to the LANCOM WLAN controller.

Catchwords: LEPS-MAC; WLC; WLAN-Controller; Blacklist; MAC
Please review this document! This document was helpful This document was not helpful