cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
521
Views
0
Helpful
4
Replies

NAC client connectivity problems

ahmedelfeki
Level 1
Level 1

Dear Support,

We have Cisco CAM & CAS that is deployed for OOBVG mode when connecting the client machine and trying get web access the client is already in the authentication vlan due to switch management port profile settings but the client cannot get an ip address through dhcp so is there any configuration to be done on the switchs or core to enforce authentication vlan to be directed to the access vlan as i configured the port profiles and vlan mapping and managed subnets what can i check to get the correct access connectivity

4 Replies 4

sadbulali
Level 4
Level 4

For In-Band clients and Out-of-Band clients which are still assigned to the Authentication VLAN, the Clean Access Agent uses SWISS discovery packets to verify connectivity with the CAS. Once a client machine is on the out-of-band network and no longer communicates directly with the CAS, additional configuration is required for the client to determine whether it is still on the Access VLAN or moved to the Authentication VLAN.To ensure OOB users are able to maintain network connection when the Cisco NAC Appliance administrator is forced to "kick" users out (and move the session back to the Authentication VLAN), you can configure the Cisco NAC Appliance system to have the Clean Access Agent renew the IP address via DHCP release/renew.

But i didnot get authentication login page from the first time i try to authenticate as i cannot reach the dhcp server

Did you configure DHCP relay mode for the CAS?

Device Management > CCA Servers > List of Servers > manage(your cas) > DHCP

for more information on this, refer to the "CAS installation and configuration guide"(page 126)

Dear Drienties;

for virtual gateway mode dhcp is passthrough.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: