I have the following requirement and I need some guidance here. In my case the partners/contractors will bring their laptops in the client environment. They will connect with wired/wireless network. They will use username/password for authentication. The user database will be there in CPPM server. The user will be grouped as per the organization. After successful login, they will assigned to the respective vlan in the network devices and the certificate will be downloaded to their device for future authentication (EAP-TLS).
The firewall rules will be there based on the vlan numbers.
I am not sure how the laptops will get new IP address as it is not good solution. Please guide me to solve this problem