Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
353
Views
5
Helpful
1
Replies

Conditional Dynamic VLAN assignment

fijog
Level 1
Level 1

‎07-13-2004 10:01 PM - edited ‎03-09-2019 08:03 AM

Hi,

Would greatly apprecaite if any feedback is provided if the following scenario is workable,

Switches: EAPOL capable

Radius server : ACS 3.2

Requirement:

When a user logs into the network, the users is assigned to a temporary VLAN, in which few conditions are checked like,

1. is the user valid domain users or Guest.

2. If valid domain user then check if antivirus is up to date

2a.if antivirus is updated assign VLAN 100

2b.if antivirus not updated assign vlan 300

3. If guest user then assign VLAN 200

In short, looking for a solution like "conditional dynamic VLAN assigment"

Can this be done by manipulating any radius attibutes?

Any inputs.

Thanks and Regards,

FG.

Labels:
0 Helpful
1 Reply 1

pcomeaux
Cisco Employee
Cisco Employee

‎07-14-2004 07:14 AM

Cisco will deliver this functionality with Phase II of the Network Admission Control program this fall. This will require an upgrade to your switches' OS and ACS 3.3.

Here's a link for more info:

http:///www.cisco.com/go/nac

Let us know if you have any other questions.

peter

Customers Also Viewed These Support Documents