web authentication, failed auth vlan ?

Unanswered Question
Aug 28th, 2007
User Badges:

Hello,


It is possible to use the radius database for people who have a login, upon successful authentication the people are allowed on a vlan.


Is it possible to allow the users that don't have a radius login on the wireless lan, but on a different vlan ? or apply different acl ?


this is like the guest vlan in the wired context. users that failed authentication are allowed on a different vlan.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ebreniz Mon, 09/03/2007 - 08:44
User Badges:
  • Silver, 250 points or more

Make sure that the RADIUS server always connects behind an authorized port and also

Enable 802.1x authentication and associated features on FastEthernet ports.

Connect RADIUS server to VLAN 10 behind FastEthernet port 3/1.

DHCP server configuration for two IP pools, one for clients in VLAN 2 and other for clients in VLAN 3.

Inter-VLAN routing to have connectivity between clients after authentication.

http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a00808066ba.shtml


Actions

This Discussion

 

 

Trending Topics - Security & Network