09-11-2012 11:39 AM - edited 03-10-2019 07:32 PM
Good afternoon,
NAC offers ip admission command for fail open on a router. Is there an equivalent command for access switches pointing to a RADIUS server?
Situation:
Access switches have two RADIUS servers configured, one pointing to Load Balancer at Site A (with 6 PSNs behind) and the second RADIUS pointing at the LB at Site B (6 PSNs behind). If neither Site Load Balancers are reachable, how could we have the access switch fail-open and apply a ACL which would give access only to the Internet to the staff?
Thanks.
Cath.
Solved! Go to Solution.
09-11-2012 11:48 AM
Cath,
You can actually leverage the command "authentication event dead action authorize vlan id" and dump the users on a vlan that will grant them access while the radius servers are unreachable.
Thanks,
Tarik Admani
*Please rate helpful posts*
09-11-2012 11:48 AM
Cath,
You can actually leverage the command "authentication event dead action authorize vlan id" and dump the users on a vlan that will grant them access while the radius servers are unreachable.
Thanks,
Tarik Admani
*Please rate helpful posts*
09-11-2012 04:33 PM
Great. Thank you.
Cath.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide