Create Network Policies

Use this task to create a network policy.

  1. Go to Policies > Policies and in the Network Policies tab, select Add Policy > Network.
  2. Configure the following network policy settings:
    Table 1. Network Policy Settings
    Field Description
    Policy Name Enter at least three alphanumeric characters for the name of the new network policy.
    Description (Optional) Enter a policy description.
    Conditions
    Note: All conditions are mutually exclusive.
    		 Select desired conditions:
    • Any User (Default) - If the default is not selected, search and select from the User Group(s) drop-down menu or create a new user group.
    • Any Device (Default) - If the default is not selected, search and select from the Device Group(s) drop-down menu or create a new device group.
    • Any Location (Default) - If the default is not selected, you can search, select, and edit from the optional Location-based Condition drop-down menu or create a new condition.
    • Any Time (Default) - If the default is not selected, search, select,and edit from the optional Time-based Condition drop-down menu or create a new condition.
    • Any Authentication Type (Default) - If the default is not select and edit from the optional Authentication-based Condition drop-down menu or create a new condition.
    Network Access
    • Default Access - Select the default access for the network. By default, all network access is dropped.
    • AP Aware - Enable this option to only authenticate the first MAC address connecting to the port of an Extreme Networks switch. The primary use case for this is an access point. All other MAC addresses will be authenticated by the access point.
    • Enter a VLAN ID or enable the switch to select an existing VLAN ID from ExtremeCloud IQ. Enter a Fabric Service Identifier if one is needed.
    • Network Service Group (Optional):
      • Select Add Network Service Group.
        Note: Drag Network Service Groups in the order to respond within the RADIUS response.
      • Select Allow or Deny.
    Note: In the Network Group table, select Revert Policy Order to reorder the columns.
    Advanced Settings (Optional)
    • RADIUS VSA's - Select from the drop-down menu.
    • Variables - Select from the drop-down menu.
  3. Select Add.

Your network policy displays in the list showing the Network Access status as Active.

To update or remove and existing Network policy, select Elipses and select Update or Remove from the drop-down list.
9039102-00 Rev AA