Prerequisites for Configuring Client Profiling
-
By default, client profiling will be disabled on all WLANs.
-
Client profiling is supported on access points that are in Local mode and FlexConnect mode.
-
Both DHCP Proxy and DHCP Bridging mode on the controller are supported.
-
Accounting Server configuration on the WLAN must be pointing at an ISE running 1.1 MnR or later releases. Cisco ACS does not support client profiling.
-
The type of DHCP server used does not affect client profiling.
-
If the DHCP_REQUEST packet contains a string that is found in the Profiled Devices list of the ISE, then the client will be profiled automatically.
-
The client is identified based on the MAC address sent in the Accounting request packet.
-
Only a MAC address should be sent as calling station ID in accounting packets when profiling is enabled.
-
To enable client profiling, you must enable the DHCP required flag and disable the local authentication flag.
-
Client profiling uses pre-existing profiles in the controller.
-
Profiling for Wireless clients are done based on MAC OUI, DHCP, HTTP User agent.
Note
DHCP is required for DHCP profiling and Webauth for HTTP user agent.