05-07-2009 10:57 AM - edited 02-21-2020 03:26 AM
I am new to the NAC solution but I have a VPN SSO Layer 3 VG INBAND MODE configuration that works with the VPN solution and now I want to expand my current config to do more. I am trying to have a conference room that will have ports that are placed in a CCA server vlan 94 untrust and if they pass posture accessment then they are placed in untrust vlan93. This works for the most part except for DNS...ie I have to put in the yahoo IP...also I am unable to pull a DHCP address...if I assign a vlan 93 IP I get the CAA to pop up and I can log into the local DB...but if I set to DHCP it will not pull an address. see attached sample
Solved! Go to Solution.
05-11-2009 09:26 AM
Hi,
do you receive a DHCP ip address when you are on vlan 93 without help of the NAC server? This would help verify the DHCP configuration without the NAC.
Once this is working, you should only need the vlan mapping and managed subnet on the CAS config.. is that already in there?
Regards,
05-07-2009 10:59 AM
correction
I am trying to have a conference room that will have ports that are placed in a CCA server vlan 94 untrust and if they pass posture accessment then they are placed in TRUSTED vlan93
05-11-2009 09:26 AM
Hi,
do you receive a DHCP ip address when you are on vlan 93 without help of the NAC server? This would help verify the DHCP configuration without the NAC.
Once this is working, you should only need the vlan mapping and managed subnet on the CAS config.. is that already in there?
Regards,
05-11-2009 10:34 AM
Thanks...the scope was on a different server...corrected the helper and works..I was told 1 thing but was on a different server. It works just like it is supposed to. Thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: