Hi, > i'm very sorry, there is a little missunderstanding :( > Switch works ok so far, so nothing needs to be done there. > My client is xp box with logon client which can do maschine auth and > prompt the user for his name and pass... > So i use ssl to auth the maschine (has a general cert like > "clientofmycompany"). before that i just used user+pw for the box, > which worked and i had user+pw in my users file... to provide vlan id, > you know? > now i read when using ssl, i don't need the user+pw stuff in my users > file - but how assign vlan then? > And after all that stuff, if user logs on, a new 802.1x request is > send out, which uses ssl + user + pw (ttls) to put him in his "home" > vlan.
ok, so the auth is now via the TLS module - so you will need to use any of the other methods to send back VLAN attributes - users, sql, perl, python etc - any of them will do - you just need to think on what basis you will be assigning the VLAN... eg UserName? IP? NAS? alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
