I'm using a Catalyst 3750. The switch supports IEEE 802.1x authentication with VLAN assignment. After successful IEEE 802.1x authentication of a port, the RADIUS server sends the VLAN assignment to configure the switch port.
Can I do this with web authentication using RADIUS attributes?
The aaa-override vlan assignment does not work on webauth. The reason for this is that the user gets the IP address before going to the radius server. However, you can combine webauth with mac filtering, in which case the course of action would be 1: verify MAC address (and apply aaa-override AVPs), THEN 2: authenticate username/pw
Is this definitely the case with WEB Authentication? I am currently looking at a potential solution for a customer and we were talking about 802.1x with WEB Authentication fallback, however we ideally need VLAN assignment from both?
I have yet to do any testing with this but if it defintely doesn't work then I'll not bother messing about with it...
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...