cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
486
Views
0
Helpful
3
Replies

NAC local DB user

agrayson
Level 1
Level 1

I am new to the NAC solution but I have a VPN SSO Layer 3 VG INBAND MODE configuration that works with the VPN solution and now I want to expand my current config to do more. I am trying to have a conference room that will have ports that are placed in a CCA server vlan 94 untrust and if they pass posture accessment then they are placed in untrust vlan93. This works for the most part except for DNS...ie I have to put in the yahoo IP...also I am unable to pull a DHCP address...if I assign a vlan 93 IP I get the CAA to pop up and I can log into the local DB...but if I set to DHCP it will not pull an address. see attached sample

1 Accepted Solution

Accepted Solutions

Hi,

do you receive a DHCP ip address when you are on vlan 93 without help of the NAC server? This would help verify the DHCP configuration without the NAC.

Once this is working, you should only need the vlan mapping and managed subnet on the CAS config.. is that already in there?

Regards,

View solution in original post

3 Replies 3

agrayson
Level 1
Level 1

correction

I am trying to have a conference room that will have ports that are placed in a CCA server vlan 94 untrust and if they pass posture accessment then they are placed in TRUSTED vlan93

Hi,

do you receive a DHCP ip address when you are on vlan 93 without help of the NAC server? This would help verify the DHCP configuration without the NAC.

Once this is working, you should only need the vlan mapping and managed subnet on the CAS config.. is that already in there?

Regards,

Thanks...the scope was on a different server...corrected the helper and works..I was told 1 thing but was on a different server. It works just like it is supposed to. Thanks

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: