When the interface comes up, the CAM puts the user in the AUTH vlan as expected via the set command (vlan 210)
03:09:09: SNMP: Packet received via UDP from 172.31.200.200 on Vlan220
03:09:09: SNMP: Set request, reqid 2144479366, errstat 0, erridx 0
vmVlan.1 = 210
that works OK
Fa0/21, Fa0/22, Fa0/23
210 VLAN0210 active Fa0/1
211 VLAN0211 active
So SNMP RW works OK,
After the user logs in to the network the user should be put back into vlan 220 (according to the port profile settings) but nothig happens, no set command send, no SNMP traffic at all. The user remains in AUTH vlan and the agent loops
I have tried all the settings, role based, initial VLAN as well, to no avail.
Any ideas? What to check for?
thanks for reply,
yes, precisely, because the user remains in the auth vlan, HTTP request is redirected to the CAS, even after the user was authenticated, passed posture validation and logged to the network.
it is layer 2 OOB with VG, basic setup just know, proof of concept actually.
OK, I believe this is more of an authentication issue than a SNMP/VLAN issue, but it could be both so lets start with authentication and some more questions :)
Are you using a clean access agent to perform authentication that is installed on the local PC, or the web agent?
What type of authentication is occurring (AD SSO, LDAP, local)?
Have you double checked your settings for mapping ports with the VG setup guide?
Also make sure your OOB port profile is correct and that it switches from auth to access vlan after authentication