Hi Airheads, I'm wondering if it is possible to support the below scenario with a small BGW only deployment (i.e. a 7010 with no switch).
I'd like to implement 'colorless ports' (wired authentication) - 802.1X with MAC fallback (using CPPM for DHCP profiling) into user roles with different VLAN IDs.
For example:
VLAN 10 = Profiling / Quarantine VLAN - ACL to allow DHCP only for profiling
VLAN 20 = Corporate Wired (allowall ACL)
VLAN 30 = Printers (allowall ACL)
As far as I can tell, I can only configure a wired aaa profile on VLAN assigned to an untrusted port, but this does not seem to work.
I've also tried adding authentication methods to the default wired aaa profile, but this also doesn't seem to work.
------------------------------
Chris Denham
------------------------------