Controller: 6.3.1.12
Clearpass: 6.4.0.66263
AP: Campus AP-225
Vlan 926: User/computer vlan
Vlan 925: Executive Vlan
Issue: User not able to login into domain. Gets "no logon server available".
Symptom: User computer boots up. I see within Clearpass Asset Tracker that the computer account get an ip on Vlan 926 and was assigned the “machine auth” profile (internal access allow). Next, the user input their login credential and get a “no logon server available”, unable to join SSID-Name. When I checked Clearpass again, I see the user status shown as allow/accept and was assign the correct role. Also the user was given the correct vlan (now switch to vlan925). What I think the issue here is that when we switch Vlan from Computer Auth to Users/Computer auth (Executive), the controller or AP is not doing it fast enough to hand out an ip going from vlan926 to Vlan925. Is there a known issue that anyone knows off switching between vlan on the Aruba wireless?
If i removed the user (a VP) from the executive AD group and add him to the normal user group. He can login just fine, that because his machin auth and user auth are on the same vlan 926. He does not have to switch between vlans.
Thanks,
Chan K.