diff --git a/configs/wlc/wlc-a.cfg b/configs/wlc/wlc-a.cfg
index 7ddec30..1efb52e 100644
--- a/configs/wlc/wlc-a.cfg
+++ b/configs/wlc/wlc-a.cfg
@@ -7,7 +7,7 @@ clock timezone America/New_York -04 0
 !
 conductorip 10.1.35.33 ipsec ****** interface vlan 35 
 location "Building1.floor1" 
-controller config 679
+controller config 680
 crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx 
@@ -1853,6 +1853,8 @@ aaa rfc-3576-server "10.1.40.117"
 !
 aaa authentication mac "default" 
 !
+aaa authentication mac "IoT" 
+!
 aaa authentication dot1x "Aruba100_dot1_aut" 
 !
 aaa authentication dot1x "default" 
@@ -1861,6 +1863,8 @@ aaa authentication dot1x "default-psk"
 !
 aaa authentication dot1x "Intune_dot1_aut" 
 !
+aaa authentication dot1x "IoT_dot1_aut" 
+!
 aaa authentication dot1x "LemoyneTest_dot1_aut" 
 !
 aaa authentication dot1x "SCSD_IoT_dot1_aut" 
@@ -1895,6 +1899,10 @@ aaa server-group "internal"
     auth-server Internal position 1 
     set role condition Role value-of 
 !
+aaa server-group "IoT_dot1_svg" 
+    auth-server NOC-CP-A position 1 
+    auth-server NOC-CP-B position 2 
+!
 aaa server-group "SCSD_Secure_dot1_svg" 
     auth-server NOC-CP-B position 1 
     auth-server NOC-CP-A position 2 
@@ -1941,6 +1949,12 @@ aaa profile "Intune_aaa_prof"
     initial-role "authenticated" 
     authentication-dot1x "Intune_dot1_aut" 
 !
+aaa profile "IoT_aaa_prof" 
+    authentication-mac "IoT" 
+    authentication-dot1x "IoT_dot1_aut" 
+    dot1x-default-role "guest-logon" 
+    dot1x-server-group "IoT_dot1_svg" 
+!
 aaa profile "LemoyneTest_aaa_prof" 
     initial-role "authenticated" 
     authentication-dot1x "LemoyneTest_dot1_aut" 
@@ -2563,6 +2577,10 @@ wlan ssid-profile "Intune_ssid_prof"
     g-tx-rates 12 18 24 36 48 54 
     hide-ssid 
 !
+wlan ssid-profile "IoT_ssid_prof" 
+    essid "IoT" 
+    opmode mpsk-aes 
+!
 wlan ssid-profile "SCSD_IoT_ssid_prof" 
     essid "SCSD_IoT" 
      wpa-passphrase *redacted*
@@ -3347,6 +3365,11 @@ wlan virtual-ap "Intune"
     forward-mode decrypt-tunnel 
     ssid-profile "Intune_ssid_prof" 
 !
+wlan virtual-ap "IoT" 
+    aaa-profile "IoT_aaa_prof" 
+    vlan 30 
+    ssid-profile "IoT_ssid_prof" 
+!
 wlan virtual-ap "SCSD_IoT" 
     aaa-profile "SCSD_IoT_aaa_prof" 
     vlan 307 
@@ -3746,6 +3769,7 @@ ap-group "default"
     virtual-ap "Aruba100" 
     virtual-ap "Intune" 
     virtual-ap "Vendor" 
+    virtual-ap "IoT" 
     dot11a-radio-profile "default_radio_a_ui" 
     dot11g-radio-profile "default_radio_g_ui" 
     regulatory-domain-profile "default_rdp_ui"