I have an Windows and ACS authentication issue. Microsoft engineer suggested I followed Microsoft KB931856 - A Windows XP-based wired client computer will not obtain a valid IP address from a guest VLAN or from an "Authentication failed-VLAN". I did step 1 and 2. But not sure how to do step 3 and 4. Any help?
3. Use the default settings in which the SupplicantMode registry entry is not present, and change the Ethernet switch settings to a value of 1 for the following settings:
" Minimum EAPOL time-out value
" EAP retry amount
4. Change the Ethernet switch VLAN setup. Use one default VLAN, and then use one or more VLANs for 802.1X authenticated computers and users.