I am trying to setup a winXP client to be authenticated via a 802.1X port on a cisco CatOS switch. The radius uses active directory to authenticate the clients. The client is not in the domain, so ideally I should see the client fall into the auth-fail VLAN.
Interestingly, the client continuously tries to authenticate using different EAP codes and never falls in the auth-fail VLAN. Is there a way to make the client fall into the auth-fail VLAN after it has failed authentication a certain number of times.