Hi All,
Device: Clearpass, Cisco Switch 2960X, Cisco/Avaya IP Phone
Current scenario:
Cisco Switch has integrated with Clearpass, IP Phone connect to Switch.
PC connect thru IP Phone Data port but nothing prompt and users gain internet access to all websites.
Clearpass show related Enforcement has pushed to Switch, and the result is correct in switch.
Initial Data VLAN: 48
Voice VLAN: 196
After OnGuard check, re-authentication User Data VLAN: Depends
Expectation: PC connect thru IP Phone Data port and get URL prompt for OnGuard Web Authentication (Not using Software Agent here).
Switch Config:
interface GigabitEthernet1/0/5
switchport access vlan 48
switchport mode access
switchport voice vlan 196
authentication event fail action next-method
authentication event server dead action reinitialize vlan 48
authentication event server dead action authorize voice
authentication host-mode multi-domain
authentication order dot1x mab
authentication priority dot1x mab
authentication port-control auto
authentication timer reauthenticate server
mab
dot1x pae authenticator
dot1x timeout tx-period 10
spanning-tree portfast edge
end
Kindly help. Thanks in advanced.
------------------------------
William Koh
------------------------------