none
NAP with 802.1X using hp procurve switch and ACL - fileter-ID attribute is not taking effect RRS feed

  • Question

  • i All,

    I have setup a NAP with 802.1X POC setup with,
    1. HP Procurve 2610 switch configured with default VLAN and two standard ACL, one named "compliant" and second "noncompliant"
    2. windows 2008 R2 Domain controller
    3. Windows 2008 R2 NAP server
    4. windows 2003 Antivirus & WSUS server
    5. windows xp sp3, vista and windows 7 clients
    6. IEEE 802.1X authentication setting is configured in the swith
    7. Configured the network compliant policy to assign "compliant" ACL to the port using the filter ID attribute.
    8. Configured the network non compliant policy to assign "noncompliant" ACL to the port using the filter ID attribute.

    Status

    - IEE802.1x authentication is happening

    - Compliant and non compliant policies also getting processed
    -The switch is not applying the ACL in the port

    Request your help in
    1. Identifying the RADIUS attribute to instrcut the procurve switch to apply a static ACL defined in it to a user port.
    2. If it is not possible, help me how to configure a dynamic ACL through vendor specific options in windows 2008 NPS.

       

     

    Thursday, October 28, 2010 5:37 AM

Answers