Hello everyone, I am aware of an article with high level overview of the solution,
https://community.arubanetworks.com/t5/Security/Wired-802-1x-phone-and-PC/td-p/275692, but was wondering if someone can share some low level information. The way we are trying to set this up is to define all device types as Attributes for every switch in the estate (Network Device->(select a switch)->Attributes-> create entry for a type of device (i.e. Corporate, CCTV, AV...) and assign VLAN ID as a "Value"), an after successful authentication push correct Attribute by Enforcement Policy to the switch. In case of VoIP phones we will have one tagged VLAN (phone), and one untagged (PC). The question is how will our Enforcement Policy combine both attributes, and how is CPPM going to enforce tagged/untagged VLANs config onto switch. Thanks in advance.