Allowing Access via 'users' when LDAP fails
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Sun Jan 31 19:16:17 CET 2010
Hi,
what switches? with Cisco you can use various fallthroughs - and you can
ensure that even the non 802.1X clients are catered for.... MAB will allow
you to send request to RADIUS server and then its your policy that matters..
eg
eg any MAC address, returns an ACCEPT but with a VLAN attribute. the switch then
puts the client on the correct, limited network.... or you can use guest-vlan
or fail vlan methods on the switch too...
..are you going via the route of 'if not known, then get a network that send them
to a web portal with intructions, install program etc' - or are you dealing
with these people individually?
alan
More information about the Freeradius-Users
mailing list