Re: Radius, 802.1x, and DHCP
- From: "Eric J." <bt_hirosaito@xxxxxx>
- Date: 29 Mar 2006 21:33:00 -0800
Hi Mike,
you can set up dynamic vlan assignment at your IAS based on the Active
Directory Group membership of the client.
for each vlan a specific policy must be created in which all AD groups
are in which should get this vlan.
do the following:
create a policy for your first vlan.
as a policy condition you specify "Windows group matches 'developers' "
'developers' is only an example. you must fill in the AD group your
client is in.
then you just configure the policy as normal.
now you must specify the dynamic assignment:
go to the "Edit Profile" button and then to "Advanced"
there you must add the following:
Tunnel-Pvt-Group-ID here you must enter the VLAN Name of the
vlan you want to assign
Tunnel-Type set to VLAN
Tunnel-Medium-Type set to 802
then you must only see that the authentication request of your client
gets to this policy. then the vlan assignment should be made.
Hope this helps.
Greetz Eric
.
- References:
- Radius, 802.1x, and DHCP
- From: Mike
- Radius, 802.1x, and DHCP
- Prev by Date: Re: EAP-TLS and logging on from the login screen
- Next by Date: Today's Content Quality Rating For microsoft.public.internet.radius
- Previous by thread: Radius, 802.1x, and DHCP
- Next by thread: Today's Content Quality Rating For microsoft.public.internet.radius
- Index(es):
