dot1x via RADIUS
cisco_trooper
Member Posts: 1,441 ■■■■□□□□□□
in CCNP
Greetings all,
I've been playing alot with dot1x via RADIUS as a means to assign switchports to a specific VLAN based upon the authenticating user in AD. I have the GUEST and AUTH_FAIL VLANs working flawlessly as far as I can tell, with the exception of some latency that doesn't exist when authentication is successful via dot1x. I guess I'm curious if anyone has experienced any "show stopping" pitfalls in implementing this. I have NOT got around to testing group policy deployments, login scripts, software installation policies deployed through AD yet, that will be done tomorrow for sure. Anyone have any experience with dot1x on a switchport that has both a CDP enabled phone AND a PC? Just curious.
I've been playing alot with dot1x via RADIUS as a means to assign switchports to a specific VLAN based upon the authenticating user in AD. I have the GUEST and AUTH_FAIL VLANs working flawlessly as far as I can tell, with the exception of some latency that doesn't exist when authentication is successful via dot1x. I guess I'm curious if anyone has experienced any "show stopping" pitfalls in implementing this. I have NOT got around to testing group policy deployments, login scripts, software installation policies deployed through AD yet, that will be done tomorrow for sure. Anyone have any experience with dot1x on a switchport that has both a CDP enabled phone AND a PC? Just curious.
Comments
-
cisco_trooper
Member Posts: 1,441 ■■■■□□□□□□
Grrr...Having trouble with roaming profiles. To be continued.......