Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am trying to figure out what is causing this issue. The customer is saying this setup worked before. Hoping someone can help.
The MAB is used as Authentication method on the switch port. The NAC used is ClearPass(not ISE). DHCP is used for profil...
The customer said it used to work before. The problem is affecting more than one switch. The tcam usage is low. below is the tcam for ACLs
ACK_L10_9300#show platform hardware fed switch active fwd-asic resource tcam utilization | inc ACLQOS ACL T...
I don't understand what will be proven by disabling dACL sent by Server. I can't change it at the moment as the policy is used by operational devices.
The command "show platform" output show the ACLs are applied on the port.
For testing "aut...
Hi
Yes, the dACL is sent by the server. The redirect ACL “url-redirect-acl” is define on switch and called by the server.
Below are the Radius attributes sent from the server to switch for ACLs.
Radius:Cisco:Cisco-AVPair = url-redirect-acl...
Redirect ACL "TEST-CLEARPASS-REDIRECT" is defined on switch. The URL redirect the users to Clearpass portal, login page.
Extended IP access list TEST-CLEARPASS-REDIRECT ...