Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Attention: The Cisco Support Community site will be in read only mode on Dec14, 2017 from 12:01am PST to 11:30am for standard maintenance. Sorry for the inconvenience.

New Member

OOB forced log out


I have an OOB VG environment running successfuly, my only question is what options do I have to force to log out a user and be re-certified.

As far as I know the only ways OOB mode logs out a user is when it detects a link down or when the session timer expires. Meaning if I reboot a machine and the user is connected via an IP Phone, when the machine come back up, the user will still be certified and will not need to authenticate.

Is this correct. Can I make NAC log them out if the machine reboots?

Thanks for any help.

Usefull answers will be rated!


Re: OOB forced log out

If the Cisco NAC Appliance system somehow terminates the OOB client session (if the system administrator is forced to "kick" the user out, for example) and the switch changes the VLAN assignment for the client's access port from the Access VLAN back to the Authentication VLAN, the client machine discovers the VLAN change and automatically initiates an IP address refresh/renew to ensure the user stays connected to the network.

CreatePlease to create content