Hi,
I setup Clearpass cluster and assign VLANs to a workstation according to its Active directory user login.
When the workstation is logged out there is no active VLAN on the port. Only dum VLAN (999) which is not configured on the network, only locally on the switches.
As soon as login is processed, the interface got the correct VLAN for the user.
My problem is when a client wants to connect to the workstation with RDP.
When the workstation is not logged in, it has no IP address. So there isn't an option to connect to it.
What is the best solution for that kind of problem?
Generating a transition VLAN is the only possible way?
And if it does, Do you have any suggestions what is the most secure way to configure this transition VLAN?
------------------------------
Best regards,
Alon Haber
------------------------------