Sitemap

Amicuk Programming Answers

Some questions on 802.1x?

2015-10-11   Views:0

Advertisement

Hello Everyone I have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these 1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC

Hello Everyone
I have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these
1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC first needs to have authenticated and then the user? If thats the case how do I configure windows for that?
2. Is it possible to have access-control based on roles? I have read about this on blogs but how do I configure? Any resources?
3.  I have 3-4 offices at different locations and one data center where RADIUS server and other intranet application are hosted. All sites are having MPLS connectivity and using same Radius server.  A user is configured in ACS for dynamic VLAN assignment to VLAN 25. From Office A ( user's primary office) he would not have any problems in authentication. What if user is going to Office B and tries to authenticate?  Will he assigned to VLAN 25? What if VLAN 25 is not present in Office B? How do we deal with this situation?
I know I have asked a lot in this post but I will be very greatful if you can help me with this.
Thanks in advance
Deepak Khemani

The replay answer
Advertisement
Deepak ,
1) You can setup either way (machine or user authentication). Machine or user needs to be authenticated and then Radius server assigns the appropriate vlan.
2) Yes, that is what dynamic vlan assignment is all about.
This doc will give you heads up about dot1x. 
http://www.cisco.com/en/US/docs/switches/lan/catalyst3550/software/release/12.1_13_ea1/configuration/guide/Sw8021x.html
3) If user logs in from office B you can assign different vlan that allows access as per user profile (incase vlan25 is not present at remote office). I'm not sure about your setup but this is very much achievable.
Regards,
~JG
Do rate helpful posts!

Go to See the other 2 answers

Some questions on 802.1x?

Category:DefaultRelease time:2015-10-11Views:130

Hello Everyone I have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these 1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC[More]

Question about 802.11n enabler

Category:DefaultRelease time:-0001-11-30Views:130

Hey folks. I just purchased the 802.11n enabler, however, i don't see any improvement in terms of speed or connection stablity. I checked network ulity, and it says it's installed, so.. what's the deal?You are right. 802.11n works only when there is[More]

Enabling 802.1x and MAC Authentication Bypass on ACS 4.2

Category:DefaultRelease time:-0001-11-30Views:130

Hi experts, I have a few questions regarding 802.1x & MAC Authentication Bypass configured on ACS 4.2. i. Is it possible to configure MAC authentication + 802.1x on ACS 4.2 at the same time? Here is the scenario; Our company would like to enforce 'do[More]

802.1x with AD authentication in a wired environment

Category:DefaultRelease time:-0001-11-30Views:130

Hello, I have a question about 802.1x authentication. I want use a combination from 802.1x and a domain authentication on a AD from microsoft. I think the first login request is the domain login, but the port on the switch is always blocked. After th[More]

802.1x bypassed?

Category:DefaultRelease time:-0001-11-30Views:130

Hi everybody. I have  a question on 802.1x. h1-----------hub---------f1/1-SW-------Radius server.                      |                      h2 h1 is a legitimate user while h2 is not.  h1 powers up while h2 is off.  h1 uses 802.1x and gets authenti[More]

Third Party Certificate, 802.1X and Intermediate Certificate

Category:DefaultRelease time:-0001-11-30Views:130

Hi Guys, Quick question: Have 802.1x setup with Windows Radius Server - Installed a Godaddy certificate which came with an intermediate root certificate.  I would like clients to validate the certificate to connect to the 802.1x, -  Question: Do i ne[More]

Network problem after new OSX update download

Category:DefaultRelease time:2015-10-11Views:130

Greetings! I've had a new (late 06) Intel 24" iMac networked wirelessly to my older iMac/cable modem/D-Link router very successfully since October. No problems and seamless set-up through the D-Link online wizard software. Saturday I noticed an OSX u[More]

Apple TV 'N' replace 2x Airport 'Gs'?

Category:DefaultRelease time:2015-10-11Views:130

I have a blackspot in my house which happen to be in the room where my iMac is (no, I can't move the iMac). To cover this I have to boost/relay my Airport Express with an old Airport Extreme. Not a major problem. If I was to get into the Apple TV tha[More]

802.1x for user authentication setup questions

Category:DefaultRelease time:2015-10-11Views:130

Hi, I am fairly new to the 802.1x realm, I have read several documents on how the setup is accomplished and I was hoping someone could validate the setup I have in mind to make sure I am on the right page.  Any comments or assistance would be greatly[More]

802.1X Port Authentication\ACS Question

Category:DefaultRelease time:-0001-11-30Views:130

Hello, I"m troubleshooting a 3560 port authentication issue. From what I was told from other members of my team when we upgraded to windows 7 at this site authentication no longer works. I compared an old config to a recent one and noticed there was[More]

802.1x Dynamic VLAN Switching Question

Category:DefaultRelease time:-0001-11-30Views:130

Trying to set up 802.1x dynamic VLAN switching, and have a question. I think I've gotten it working except for one part. The VLAN on a protected interface is never getting switched. I can see an entry in the ACS stating that it applied the appropriat[More]

Hot
Good Day! Hi Experts, I had created an installer for my Add-on for the client. This is a project from SAP B1 Studio. SAP B1 version is 9.0 PL11. 1. The add-on is running ok in Debug Mode. 2. I've successfully created an ARD File. 3. Successfully inst [More]
Hi, My client wants to upload condidential employees data into Z table (do not want HR).  These tables will contains some informations that I want to encrypt (salary, ssn, etc...).  Is there an easy way to encrypt/decrypt this kind of data. I found t [More]
My iPhone 4S on iOS7 is stuck on Apple Logo, and it goes off, then back to Apple Logo again for hours. Pressing home button together with sleep button does not help. Plugging the phone to Mac and restart does not help either. What do I do? Have not b [More]
Hi, I am getting the following as structure from external system. Is it possible to convert this to normal structure via graphical mapping or do we need to use xslt mapping. <Document> <data>     <Advice number="18" record-type=&q [More]
Hi I had raised this issue on the forum in September, but have not got any reply. I need solution for this problem urgently. Can anybody help please? The problem is, I am developing a plug-in on PC for Adobe Indesign CS3. I am required to place excel [More]
I just purchased a Kingston 8GB SDHC card and put it into my 8330 with OS v4.3.0.127 . When I go to format the card, I get an error message "Media Card Format Failed". According the compatability chart, v4.3.0 supports the 8GB card. Anyone have [More]
When I try to open to modify, or just preview an xls document, the system asks me for my Credentials. It doesn't happen when i do the same with other kind of documents like .doc or .ppt. I'm running SAP EP 6 SP 13, using a fsdb repository. The files [More]
Hi All, I have two selection paramaters for abap program. i.e sales org hier level Based on sales org entered by user, hier level field needs to be populated. The value of hier level for that sales org is available in another table. Also i want to ke [More]
Ok, so i have had numerous faults on my line since i moved into my house 21st March 2011, due to these my services that i have subscribed to havent worked properly. Yesterday the engineer called out so thats almost 2 weeks without these services and [More]
Ok so this problem is intermittent, but for the last few days its been constant. I'll be going through emails replying, then when i highlight an email all of a sudden it wont mark as read until i click it a second time. From then on all replys i send [More]