I am trying to configure a dynamic vlan solution where a users is dropped into a specific vlan dependant on their AD group membership validated by a Microsoft NPS server.
I have the NPS server running and configured the appropiate settings
Under Radius Attributes:
Framed- Protocol - PPP
Service-Type - Framed
Tunnel-Medium-Type - 802
Tunne-PVT-group-ID 501 - (this is the vlan I want to drop into)
Tunnel-Type - Virtual LANs
I can connect to the wireless and get authenticated however I drop into the VLAN that the AP is connected into.
If I enable Dynamic Vlan - I still connect to the wireless but get no network.
I am thinking it is something to do with the way we are connecting the AP's to the switches?
If I connect to an AP that is in the VLAN I want - everything works.
So my thinking is that there has to be a bit more work on switch configuration for the AP's to support this?
I cannot find any info about this on the ruckus knowledgebase anywhere?
Does this sound familiar to anyone
For reference we are using Juniper EX4200 switches.
Thanks
