We have a centralized NAC server design with a large number of remote sites. With 4.5, I have heard you need Layer 2 adjancency for the WLC's to the NAC servers even if using OOB? Is this correct? This is a serious limitation if so. thanks
I have found out from Cisco that L2 adjancency is required. Apparently, the un-authenticated VLAN is sent to the CAS by default. The CAS then assigns based on role after authentication, THEN goes out of band.