Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I was designing a dot1x setup where the machine authentication gets a restricted vlan and the user+ machine authentication gets the full access vlan. So when a user opens up his laptop , it will first perform the machine authentication. Clearpass wil...
Hi Arshadsaf,Actually Auth method EAP-PEAP,EAP-MSCHAPv2 is working fine for both machine and user authentication ( Tested in Aruba and Cisco Wireless). Are you doing a basic Dot1x dynamic VLAN assignment where the user connects he receives an IP fro...
Hi Arshadsaf and rrudling, Thank you for your responses.Noted on that. To verify on CoA, I have taken few pcap from Clearpass to cisco and I could not see any Radius disconnect-request from clearpass to cisco. Even the vlan change was working after d...
Hi Arshadsaf, Thanks for your response.Yes the CoA and AAA override has already been enabled.I have taken a pcap from clearpass and I could not find any CoA is being sent to the controller.So does this vlan change really need CoA to work ? Thanks fo...
