I am deploying nac in-band L3 VG, the untrusted site is conected to a L3 switch with 3 diferent subnets, from that switch there are 3 diferent wireless networks, the trusted site is conected to a L2 switch and from there to two ASAs in fail-over.
I am able to login through web agent but everytime I open a web browser the web login pop's up asking me for credentials again and again.
For L2 or L3 deployments, the Clean Access Agent (NAC) will pop up on the client if "Popup Login Window" is enabled on the Agent and the Agent detects it is behind the Clean Access Server. If the Agent does not pop up, this indicates it cannot reach the CAS.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...