Create Date: Oct 13 2012 3:04AM
We are in the process of migrating from old EW based switches to XOS based ones at our corporate office. On the old EW switches, I had dot1x (netlogin) working wherein I would have a port manually assigned to a VLAN and netlogin enabled for it. My Radius server would authenticate on the basis of computer/user name and would return no VSA or vlan tag. So once authenticated, the client would belong to the vlan the port was originally assigned to. This I guess is ISP mode operation.
On our new XOS based switches, I see that you need to assign a netlogin vlan to even enable the dot1x feature. Although the extreme documentation is detailed, I am trying to see how to get this to work for my scenario. I have a summit stack of around 4-5 nodes with localized vlans on each node. I dont use a dedicated mgmt vlan but an ip from one of these vlans for switch mgmt. This would be the Radius client ip.
I have a floor migration this weekend https://. Any help would be most appreciated. Tks again. (from Anush_Santhanam)