• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2528
  • Last Modified:

NPS 802.1X VLAN Assigment configuration

I have been tasked to configure an NPS server to do VLAN assignment based on user authentication credentials.

We want for wireless and wired connections to get a VLAN assigned based on the computer account or user authentication. For example when they plug via wire the switch will send the request to the NPS server and based on the rules it will place the computer in a particular VLAN or will deny the access.  To keep it simple we will use EAP-PEAP with MSCHAP2 (certificate just on the NPS server)

Also we need to have a redundant NPS server is case the primary goes down.

That being said, can someone help us out and provide build notes or some guidance.
0
llarava
Asked:
llarava
1 Solution
 
Jakob DigranesSenior ConsultantCommented:
based on what you write, it looks like you already have quite a lot of knowledge on NPS and 802.1X ---
here's some blogs around 802.1X with dynamic VLAN assignment - hope that will put you in the right direction:
http://technet.microsoft.com/en-us/library/cc754422%28v=ws.10%29.aspx
http://blog.packetqueue.net/category/802-1x/
http://integratingit.wordpress.com/2012/07/05/configuring-dynamic-vlan-assignment-on-procurve-switches/ --- but in this last article ; remember to unchekd LESS SECURE AUTHENTICATION METHODS as they have checked in the picture
0
 
llaravaAuthor Commented:
Thanks for the links. We are going to setup 2 NPS servers for redundacy. Do you know if I can configure the Cisco switches with 2 NPS servers? If so how do I do that?
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now