Home > Wireless LAN > Group Policies and Blacklisting > Implementing bandwidth per-device using WPA2-Enterprise with RADIUS authentication - (Enterprise Only)

Implementing bandwidth per-device using WPA2-Enterprise with RADIUS authentication - (Enterprise Only)

Table of contents
No headers

A network operator can implement bandwidth limits per user when using WPA2-Enterprise with RADIUS authentication. This functionality requires the use of RADIUS Group Policies.


  1. Login to Dashboard.
  2. Click on the "Configure" --> "Group Policies" link.
  3. Select the SSID you would like to limit from the SSID: drop down list.
  4. Select "Filter-ID" in the "RADIUS attribute specifying the group" list.
  5. Name the group name for this policy is based on the Filter-ID string attribute specified in your RADIUS policy. Access points must receive this attribute in the RADIUS Access-Accept message so the Group policy will apply. 

You will then need to setup a corresponding group within your Directory server and ensure that the intended user or computer accounts are members of that group. Finally you will need to specify this group and Filter-ID attribute in your RADIUS servers policy. Please refer to your RADIUS server manual for more details on this portion of the setup.

The following Microsoft link explains creating a Filter-ID attribute on an IAS server.

Use a Standard RADIUS Attribute Filter-ID

You must to post a comment.
Last modified
09:58, 3 Feb 2015



This page has no classifications.

Article ID

ID: 1988

Contact Support

Most questions can be answered by reviewing our documentation, but if you need more help, Cisco Meraki Support is ready to work with you.

Open a Case

Ask the Community

In the Meraki Community, you can find answers provided by fellow Meraki users and ask questions of your own.

Visit the Community