Sitemap

Amicuk Programming Answers

Some questions on 802.1x?

2015-10-11   Views:0

Advertisement

Hello Everyone I have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these 1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC

Hello Everyone
I have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these
1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC first needs to have authenticated and then the user? If thats the case how do I configure windows for that?
2. Is it possible to have access-control based on roles? I have read about this on blogs but how do I configure? Any resources?
3.  I have 3-4 offices at different locations and one data center where RADIUS server and other intranet application are hosted. All sites are having MPLS connectivity and using same Radius server.  A user is configured in ACS for dynamic VLAN assignment to VLAN 25. From Office A ( user's primary office) he would not have any problems in authentication. What if user is going to Office B and tries to authenticate?  Will he assigned to VLAN 25? What if VLAN 25 is not present in Office B? How do we deal with this situation?
I know I have asked a lot in this post but I will be very greatful if you can help me with this.
Thanks in advance
Deepak Khemani

The replay answer
Advertisement
Deepak ,
1) You can setup either way (machine or user authentication). Machine or user needs to be authenticated and then Radius server assigns the appropriate vlan.
2) Yes, that is what dynamic vlan assignment is all about.
This doc will give you heads up about dot1x. 
http://www.cisco.com/en/US/docs/switches/lan/catalyst3550/software/release/12.1_13_ea1/configuration/guide/Sw8021x.html
3) If user logs in from office B you can assign different vlan that allows access as per user profile (incase vlan25 is not present at remote office). I'm not sure about your setup but this is very much achievable.
Regards,
~JG
Do rate helpful posts!

Go to See the other 2 answers

Some questions on 802.1x?

Category:DefaultRelease time:2015-10-11Views:130

Hello Everyone I have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these 1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC[More]

Question about 802.11n enabler

Category:DefaultRelease time:-0001-11-30Views:130

Hey folks. I just purchased the 802.11n enabler, however, i don't see any improvement in terms of speed or connection stablity. I checked network ulity, and it says it's installed, so.. what's the deal?You are right. 802.11n works only when there is[More]

Enabling 802.1x and MAC Authentication Bypass on ACS 4.2

Category:DefaultRelease time:-0001-11-30Views:130

Hi experts, I have a few questions regarding 802.1x & MAC Authentication Bypass configured on ACS 4.2. i. Is it possible to configure MAC authentication + 802.1x on ACS 4.2 at the same time? Here is the scenario; Our company would like to enforce 'do[More]

802.1x with AD authentication in a wired environment

Category:DefaultRelease time:-0001-11-30Views:130

Hello, I have a question about 802.1x authentication. I want use a combination from 802.1x and a domain authentication on a AD from microsoft. I think the first login request is the domain login, but the port on the switch is always blocked. After th[More]

802.1x bypassed?

Category:DefaultRelease time:-0001-11-30Views:130

Hi everybody. I have  a question on 802.1x. h1-----------hub---------f1/1-SW-------Radius server.                      |                      h2 h1 is a legitimate user while h2 is not.  h1 powers up while h2 is off.  h1 uses 802.1x and gets authenti[More]

Third Party Certificate, 802.1X and Intermediate Certificate

Category:DefaultRelease time:-0001-11-30Views:130

Hi Guys, Quick question: Have 802.1x setup with Windows Radius Server - Installed a Godaddy certificate which came with an intermediate root certificate.  I would like clients to validate the certificate to connect to the 802.1x, -  Question: Do i ne[More]

Network problem after new OSX update download

Category:DefaultRelease time:2015-10-11Views:130

Greetings! I've had a new (late 06) Intel 24" iMac networked wirelessly to my older iMac/cable modem/D-Link router very successfully since October. No problems and seamless set-up through the D-Link online wizard software. Saturday I noticed an OSX u[More]

Apple TV 'N' replace 2x Airport 'Gs'?

Category:DefaultRelease time:2015-10-11Views:130

I have a blackspot in my house which happen to be in the room where my iMac is (no, I can't move the iMac). To cover this I have to boost/relay my Airport Express with an old Airport Extreme. Not a major problem. If I was to get into the Apple TV tha[More]

802.1x for user authentication setup questions

Category:DefaultRelease time:2015-10-11Views:130

Hi, I am fairly new to the 802.1x realm, I have read several documents on how the setup is accomplished and I was hoping someone could validate the setup I have in mind to make sure I am on the right page.  Any comments or assistance would be greatly[More]

802.1X Port Authentication\ACS Question

Category:DefaultRelease time:-0001-11-30Views:130

Hello, I"m troubleshooting a 3560 port authentication issue. From what I was told from other members of my team when we upgraded to windows 7 at this site authentication no longer works. I compared an old config to a recent one and noticed there was[More]

802.1x Dynamic VLAN Switching Question

Category:DefaultRelease time:-0001-11-30Views:130

Trying to set up 802.1x dynamic VLAN switching, and have a question. I think I've gotten it working except for one part. The VLAN on a protected interface is never getting switched. I can see an entry in the ACS stating that it applied the appropriat[More]

Hot
I just built my website in dreamweaver. When I preview it, it looks fine in both firefox & safari. However when i post and view my site online, i see unwanted cel borders in firefox...I've already checked the code and the border is set to 0 - any hel [More]
Hi All Preliminary cost analysis is not showing up in the production order...can anyone suggest what could be the possible reason for thisHi, Once you issue goods(GI) to order then only you can see actaul cost in cost analysis in Production order. if [More]
I need to be able to transfer Ebooks from my PC to my IPad...also need help in syncing from PC to IPad. I have downloaded ITunes to my PC. Using Windows.Thanks. Mazda167Syncing with iTune http://support.apple.com/kb/HT1386Read other 2 answers [More]
i'm running pulseaudio on up-to-date arch, with gnome atm. The only way i can get the audio in quake live to stop stuttering (spamming buffer underruns in console ) is to set s_alsa_latency in the game very high (a little too high for gaming). I foun [More]
Hias, I installed a Radeon9600PRO on folling config: -KT3 U2 -2x256MB DDR400 -AMD XP 2000+ -Win XP pro SP1 straight of cd, no updates -Eizo 17" F56 CRT -Catalyst 4.11 -Fastwrites is on -AGP apenture size is 128MB -AGP speed is 4x When I tried Aquamar [More]
I have a Dual 1.25 GHz PowerPC G4 (tower) running Mac OS X version 10.5.8 and firefox 3.6.9 - everything appears normal until I try to print and then window, firefox, everything just disappearsgood question -just tried it with Safari and it worked fi [More]
When using cfform's preservedata attribute we're having a problem with checkboxes. If no items in a group are selected, no items are selected when the page reloads. If any items are selected, ALL items in the group are selected when the page reloads. [More]
.Hi edeckphoto, Please check this link Error downloading Creative Cloud applications for the list of errors and its description. -AnkitRead other 2 answers [More]
Hi, Does anyone know how to configure evaluations at level task only for released projects? What we need is that the evaluation will be executed only when project has released status. Is that possible? Thanks a lot, CAMILO URIBEHi CAMILO, After the n [More]
I have trouble when I am talking to someone and I have a nother call coming in - I can answer the call but when I want to go back to the original caller I get disconnetedFrom the iPhone User Manual: Respond to a second incoming call: Ignore the call [More]