Summary

Question

Customer Environment

Root Cause

Troubleshooting Steps

Workaround

Resolution

We can block clients from connecting to the SSID by creating L2 ACL and adding the client MAC addresses to the list.

Go to WLAN settings > Advanced >> Access control >> Layer 2

Services > Access Control > Access Control Profiles > Create a profile and enable L2 ACL

Please find the steps to add the MAC addresses.

To configure an L2/MAC ACL:

1. Go to Services & Profiles > Access Control
2. Expand the L2-L7 Access Control section.
3. In L2/MAC Access Control, click Create NewAlternatively, you can create a Layer 2/MAC ACL from the WLAN creation page while creating a new WLAN or modifying an existing WLAN ( Wireless LANs > Edit > Advanced Options > Access Control > L2/MAC > Create New.)
4. Type a Name for the ACL. Configuring Services and Profiles Configuring Network Access Controls
5. Type a Description of the ACL.
6. Select the Restriction mode as either allow or deny.
7. Type a MAC address in the MAC Address text box, and then click Create New to save the address. The new MAC address that you added appears next to the Stations field. You can enter up to 128 MAC addresses per ACL.

8. Click OK to save the L2/MAC based ACL. You can create up to 32 L2/MAC ACL rules and each rule can contain up to 128 MAC addresses. Each WLAN can be configured with one L2 ACL.