OOB forced log out

Unanswered Question
Jul 11th, 2008


I have an OOB VG environment running successfuly, my only question is what options do I have to force to log out a user and be re-certified.

As far as I know the only ways OOB mode logs out a user is when it detects a link down or when the session timer expires. Meaning if I reboot a machine and the user is connected via an IP Phone, when the machine come back up, the user will still be certified and will not need to authenticate.

Is this correct. Can I make NAC log them out if the machine reboots?

Thanks for any help.

Usefull answers will be rated!

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
smahbub Thu, 07/17/2008 - 11:20

If the Cisco NAC Appliance system somehow terminates the OOB client session (if the system administrator is forced to "kick" the user out, for example) and the switch changes the VLAN assignment for the client's access port from the Access VLAN back to the Authentication VLAN, the client machine discovers the VLAN change and automatically initiates an IP address refresh/renew to ensure the user stays connected to the network.


This Discussion