主权项 |
1. A method for authenticating a client device in a network system, comprising:
receiving, by an authentication module implemented by one or more hardware processors of a network controller within a local network of the network system, an authentication success message from an external remote authentication dial in user service (RADIUS) server located external to the local network; storing RADIUS attributes from the authentication success message when the authentication success message includes RADIUS attributes for the client device and; determining, at a later time by the network controller, whether the external RADIUS server, is accessible; and in response to determining that the external RADIUS server is inaccessible, an internal RADIUS server of the network controller:
attempting to authenticate the client device within the local network based on credentials of the client device, andin response to successfully authenticating the client device, attempting to locate the RADIUS attributes stored locally within the local network; and in response to locating the locally stored RADIUS attributes, the authentication module assigning a role or virtual local area network (VLAN) to the client device based on the locally stored RADIUS attributes, in response to the authentication success message failing to include RADIUS attributes, assigning, by the authentication module, a default role or a default VLAN to the client device. |