|
Microsoft IAS and Cisco switch 802.1x configuration HOWTO - 1. Lab Setup and Topology |
 |
 |
 |
|
Written by dstubked
|
|
Monday, 22 September 2008 23:27 |
|
Page 2 of 7 Lab Setup and TopologyFor the purpose of this HOWTO, we will be doing the setup based on the network diagram below. Â  Setup Information
Some key points to note here: - The user database will be stored in the active directory. This HOWTO does not covers how to setup an IAS server, it will assume that you have a working IAS server that is able to read the active directory user database
- To really simplify things and make it easy for the newcomer to understand, there are 3 networks here:
- VLAN 10 will be the trusted network. This is where clients will be placed if they are successfully authenticated by the authentication server.
- VLAN 20 will be the guest network. This is where clients will be placed if they are authenticated as a client or if the 802.1x supplicant on the client is not enabled.
- VLAN 50 will be the quarantine network. This is where clients who failed the authentication process will be placed.
- The access switches will be configured to access the IAS server with an IP of 192.168.10.60 in order to validate user credentials.
- The VLAN which the authenticated user belongs to will be configured on the IAS. This means users will be assigned to the designated VLAN based on their active directory user name.
- For this HOWTO, a Cisco Catalyst 3650 switch was used as the access switch. However, it should work for just any switch running IOS 12.2.x
|
|
Last Updated ( Sunday, 05 October 2008 02:01 )
|
Network Security 
