Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: Egbert Albert (e.albert"at"vistaconsult"dot"de)
Date: 03/17/05

Next message: Brian Jackson: "Multiple Domains"

Previous message: Thomas K: "Re: Multiple EAP-Types at WinXP clients"
Next in thread: James McIllece [MS]: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Reply: James McIllece [MS]: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Reply: Eric J.: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Reply: Igor Krstic: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Messages sorted by: [ date ] [ thread ]

Date: Thu, 17 Mar 2005 16:36:49 +0100

Hello world,

i have the following constellation.

Wireless Clients authenticating over 802.1X EAP-TLS and IAS. Cert Server is
running (w2K3 Cert Server), IAS Server is Running (W2K3 IAS Server).
My Access Points are all Cisco 12xx Type devices, IOS 12.3 (a lot of them)

At the moment everything is running fine in this constellation.

Now i want to do the following.

I want to differentiate between the Clients coming in via WLAN.

1. Public Visitors
2. Trusted Clients but not Domain Member
3. Trusted Clients and Domain Member (the existing config

Question: Is it possible to define a Rule at IAS Site to define what VLAN
the client should use if not Client from 3. and the clients gets then the
right IP Address from that VLAN.
I cannot find anything regarding VLANS in the IAS Rule Settings.

regards
Egbert

-- 
______________________________________________________________________
22 CSE's mit PolicyMaker, Registry CSE
Desktopstandardisierung von seiner besten Seite.
Patch Management mit PolicyMaker Software Update
Desktopmanagement mit PolicyMaker und ProfileMaker
http://www.vistaconsult.de

Next message: Brian Jackson: "Multiple Domains"

Previous message: Thomas K: "Re: Multiple EAP-Types at WinXP clients"
Next in thread: James McIllece [MS]: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Reply: James McIllece [MS]: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Reply: Eric J.: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Reply: Igor Krstic: "Re: Deciding what VLAN to use when Authenticating via 802.1X, IAS and Wireless LAN"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: IAS server and access points
... I use PEAP and passwords to authenticate wireless clients. ... I get an occassional message on my IAS server that says "A RADIUS ...
(microsoft.public.internet.radius)
Re: EAP-TLS Radius problem
... Do I understand you correctly that with IAS it is not possible to process ... server is in? ... authorize the connection requests for both domains: ... Clients are running Windows XP SP3. ...
(microsoft.public.internet.radius)
WPA Security and Cert Services
... I setup a IAS and a Cert server. ... clients to authenticate. ... me that the IAS server is trying to authenticate the computer which this ...
(microsoft.public.windows.server.general)
Re: 2003 IAS forgets RADIUS clients
... the DNS entries have not changed. ... >>> Why might IAS be 'forgetting' the RADIUS client configuration? ... >> A work-around will be to specify the clients by IP address, ... >> so it can resolve the names before the DNS server has started up. ...
(microsoft.public.internet.radius)
Wireless Security Issues
... Server 2003 Enterprise ... Clients - Windows Vista Home ... Event Source: IAS ... and a few client setup I just want to beef up the security by adding ...
(microsoft.public.windows.server.networking)