G
Guest
Hi,
my configuration:
WinXP sp2 (using protected EAP-no certificate authentication- ms chap 2)
HP Switches with two Vlan
Cisco Secure ACS 3.3 (RADIUS server)
Microsoft Win2003r2 AD
The switches are managing two lans. One is the guest lan and the other one
is the official network. The users are authenticated trough their network
profile/password over the Cisco Radius server, that inquires the ACtive
Directory. If ok the switch assign to the computer an IP of the official
network, if not an ip address of the guest lan.
The problem is that when the users logs in, they are authenticated on the
WinXP cached local profile, and only in a second time (after one minute) they
are authenticated from the Active Directory, and receive the correct IP
address
This means that no login messages appear (password to change...),
programs launched at startup fails to connect to the network,
users that don't have already a local profile are not able to connect to
the pc anymore.
my configuration:
WinXP sp2 (using protected EAP-no certificate authentication- ms chap 2)
HP Switches with two Vlan
Cisco Secure ACS 3.3 (RADIUS server)
Microsoft Win2003r2 AD
The switches are managing two lans. One is the guest lan and the other one
is the official network. The users are authenticated trough their network
profile/password over the Cisco Radius server, that inquires the ACtive
Directory. If ok the switch assign to the computer an IP of the official
network, if not an ip address of the guest lan.
The problem is that when the users logs in, they are authenticated on the
WinXP cached local profile, and only in a second time (after one minute) they
are authenticated from the Active Directory, and receive the correct IP
address
This means that no login messages appear (password to change...),
programs launched at startup fails to connect to the network,
users that don't have already a local profile are not able to connect to
the pc anymore.