NAC Authentication in multi Domain scinario

Unanswered Question
Apr 27th, 2008

HI,

Can anyone guide me how to configure windows authentication & authentication server in multidomain scinario?

Actually I have two domains.Different user roles should be authenticated by different domains.Once the user is authenticated by a domain he should be allocated the particula vlan also.

Can anyone pls guide me?

Thanks in advance

Sachi

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
gojericho0 Mon, 04/28/2008 - 04:15

Sachi,

You would configure a Authentication Server for each domain. You can map a user role based on the authentication server. Users logging into ABC.lcl would belong to the default role ABC users. Users logging into DEF.lcl would belong to the default role DEF users.

You can then tweak the user role policy for each domain.

Here's some documentation if you need help getting started

http://www.cisco.com/en/US/products/ps6128/products_configuration_example09186a0080884229.shtml

sachidananda panda Mon, 04/28/2008 - 04:56

We have already tried this but whenever u try to configure another authentication server it overrides the earlier one.TAC saying its only possible with a single domain. under one domain authentication can be configured with different groups.

Actions

This Discussion