Hi,
Have a setup which is using Guest Registration External Captive portal to ExtremeControl, with text based verification via XCC.
What happens is the client registers through the captive portal, which the process completes without issue, but the client
never moves to the authenticated role.
In this case the client was asked to disconnect and reconnect, but took a forced disassociate from XCC to get the client to re-auth and get the correct role / VLAN / subnet (172.16.x.x) in order to connect. This issue seems to be more related to the desktop / laptop rather then when using a phone.
So the transition of registering isn't as fluid as might be expected
I believe COA is enabled by default, but in this situation it might need to be turned off based on the is article due to the VLAN change?
How To: How to enable CoA (Change of Authorization) on a Access Control/NAC appliance for Extreme Wi...
Here is a screenshot of the Control config:
Not sure what sysObjectId would be used, but this is what is set for the Extreme IdnetiFi Wireless:
So my question is should it be disabled (if that is the answer), and / or what might be configured to assist a smoother on-boarding?
Admittingly XMC / Control needs upgrading as on version 8.3.2.11
XCC is on version 05.46.03.0016
It is possible an XMC / NAC upgrade is the answer to fully support the XCC, but wondered if the answer was in fully understanding the mechanics and thereby a solution could be found in config.
Many thanks in advance
Have a setup which is using Guest Registration External Captive portal to ExtremeControl, with text based verification via XCC.
What happens is the client registers through the captive portal, which the process completes without issue, but the client
never moves to the authenticated role.
In this case the client was asked to disconnect and reconnect, but took a forced disassociate from XCC to get the client to re-auth and get the correct role / VLAN / subnet (172.16.x.x) in order to connect. This issue seems to be more related to the desktop / laptop rather then when using a phone.
So the transition of registering isn't as fluid as might be expected
I believe COA is enabled by default, but in this situation it might need to be turned off based on the is article due to the VLAN change?
How To: How to enable CoA (Change of Authorization) on a Access Control/NAC appliance for Extreme Wi...
Here is a screenshot of the Control config:
Not sure what sysObjectId would be used, but this is what is set for the Extreme IdnetiFi Wireless:
So my question is should it be disabled (if that is the answer), and / or what might be configured to assist a smoother on-boarding?
Admittingly XMC / Control needs upgrading as on version 8.3.2.11
XCC is on version 05.46.03.0016
It is possible an XMC / NAC upgrade is the answer to fully support the XCC, but wondered if the answer was in fully understanding the mechanics and thereby a solution could be found in config.
Many thanks in advance
1 ACCEPTED SOLUTION
Hi Martin,
I have this in the RADIUS Attribute configuration:
For the SysObjectId, go to the device in the configure menu.
You have a vendor profile tab with the OID
Here my CoA settings:
Regards,
Mig
I have this in the RADIUS Attribute configuration:
- Filter-Id=%POLICY_NAME%
- Filter-Id=Enterasys:version=1:%MANAGEMENT%policy=%POLICY_NAME%
- Login-LAT-Port=%LOGIN_LAT_PORT%
- Service-Type=%MGMT_SERV_TYPE%
For the SysObjectId, go to the device in the configure menu.
You have a vendor profile tab with the OID
Here my CoA settings:
Regards,
Mig
Hi Martin,
I have this in the RADIUS Attribute configuration:
For the SysObjectId, go to the device in the configure menu.
You have a vendor profile tab with the OID
Here my CoA settings:
Regards,
Mig
I have this in the RADIUS Attribute configuration:
- Filter-Id=%POLICY_NAME%
- Filter-Id=Enterasys:version=1:%MANAGEMENT%policy=%POLICY_NAME%
- Login-LAT-Port=%LOGIN_LAT_PORT%
- Service-Type=%MGMT_SERV_TYPE%
For the SysObjectId, go to the device in the configure menu.
You have a vendor profile tab with the OID
Here my CoA settings:
Regards,
Mig
