Hi
I have a working configuration for 802.1X authorization. Here is the scenario.
1. The user when connected to the network initially falls in the guest vlan (say vlan 100). The user is assigned an ip address from a DHCP server,
2.The user then requests a certificate from the certificate server, downloads it and installs it.
3. After the certificate is installed and machine restarted the user falls in the respective user vlan (say vlan 200) and is assigned an ip address from the DHCP server.
4. The things were quite fine Upton this point. The problem arises after that.
5. Say the user shuts the machine, and restart it. There are two problems seen at this point.
a. The machine takes a long time for starting up and seems to hang up in preparing network connections. After a long wait, the user is able to log onto the machine. This time can be as long as 10 to 15 mins.(unusually long)
b. The ip address on this machine is from the guest vlan (where as it should be from the respective vlan as it is authenticated already). After you plug out and plug-in the network cable, the user then takes the ip address of the respective vlan.
6. The client is claiming that the same feature is working well with other vendors switches. So there is a problem with juniper switches. Any guesses ???