We made changes to default realm in the proxy.conf file so that all auth
requests will be sent to cisco ACS for authentication, that part is working
fine but once authenticated the users are stuck in the mac detection vlan,
switch is not getting the VLAN details from free radius server.
Can someone please explain the workflow when we use the free radius server
as a proxy to ACS( or any external radius server)- Does the Free radius
server sends the VLAN info after authentication or Does the ACS (external
radius) need to send the VLAN info.
We tested it without ACS(external radius server) and everyhing works fine,
user authenticates against free radius server and connect to the switch
port and then PF changes the VLAN from mac detection to registration.
Do we need to use mac detection VLAN when we use dot1x authentication.
Thanks for the help
--
Siddhartha
------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_jan
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
