We are trying to configure WLC for SSO with NAC Out of Band. We are following the document #107645 as a reference. We are facing the following problem.
We are currently trying it for Guest Users. So if a guest user connects via wireless, they are forwarded to the guest registration page. They register themselves on that. Post that, they are transferred from the quarantine vlan to access vlan. Later they are also pushed into guest vlan, but they are not getting the ip address from that pool. The ip remains same, that of access vlan.
If we test the same for wired users, it works absoultely fine. Any idea over the same?
Also, as mentioned in the document, RADIUS Accounting needs to be configured on the WLC to achieve Single Sign-On capability with the NAC server. For that we have to add AAA server. What should we add here? In our case, we have added, CAS server listening on radius ports.
Need help in this case.