web authentication, failed auth vlan ?

Unanswered Question
Aug 28th, 2007

Hello,

It is possible to use the radius database for people who have a login, upon successful authentication the people are allowed on a vlan.

Is it possible to allow the users that don't have a radius login on the wireless lan, but on a different vlan ? or apply different acl ?

this is like the guest vlan in the wired context. users that failed authentication are allowed on a different vlan.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ebreniz Mon, 09/03/2007 - 08:44

Make sure that the RADIUS server always connects behind an authorized port and also

Enable 802.1x authentication and associated features on FastEthernet ports.

Connect RADIUS server to VLAN 10 behind FastEthernet port 3/1.

DHCP server configuration for two IP pools, one for clients in VLAN 2 and other for clients in VLAN 3.

Inter-VLAN routing to have connectivity between clients after authentication.

http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a00808066ba.shtml

Actions

This Discussion

 

 

Trending Topics - Security & Network