I'm implementing 802.1x in a test lab. I have successfully implemented MAB and 802.1x authentication in combination with active directory. The tricky part is the Web Authentication fallback. We need web authentication because we have a guest management server where guests can get a temporary account and we don't want guests to be forced to install 802.1x supplicants.
The web servers on the switches are disabled. Is it possible to configure the Cisco ACS and/or switches in such a manner that the clients get redirected to a external web authentication page/server such as a Cisco NGS without enabling the web server on the switches?
I hope someone can help me and point me in the right direction with white papers or examples.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...