Got it! i'll proceed that way then,
I have other question regarding the unauth-vid, i wanted to use this option when the cppm isn't not reachable from the switch
below port configuration:
Ports Configuration:
aaa port-access authenticator active
aaa port-access authenticator x-y client-limit 10
aaa port-access authenticator x-y unauth-vid 33
aaa port-access mac-based x-y
aaa port-access mac-based x-y addr-limit 10
aaa port-access mac-based x-y unauth-vid 32
aaa port-access authenticator x-y
aaa port-access authenticator x-y supplicant-timeout 10
aaa port-access authenticator x-y tx-period 10
based on this setup, i wanted to confirm if: when cppm isn't not reachable:
802.1x users (exemple: windows PC) will be assigned to vlan 33
and MAC-auth device (phones, APs, printers) will be assigned to vlan 32, and how to tell switch this vlan 32 is a tagged vlan ?
thank you