Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Pushing per user acls and dynamic vlans using wired DOT1x on IOS XE

Currently Implementing wired dot1x using some unified access switches running IOS XE and using MS NPS to perform dot1x authentication.

While i have gotten the port to authenticate my test windows xp/7 clients. The switch does not apply the VLAN and ACL attributes configured for the user. I have tried both NPS and FREERADIUS but neither sends the radius attributes 64 65 and 81 to the switch port. The cisco VSA containing the access list details does not get applied either.

I am assuming that upon authenicating the port the radius attributes and VSA information defined in NPS is automatically pushed to the switch.

I have not defined any acls on the switch itself

thanks in advance

1 REPLY

Pushing per user acls and dynamic vlans using wired DOT1x on IOS

221
Views
0
Helpful
1
Replies
CreatePlease to create content