Issue Description
The internal network user can pass the TSM authentication through connecting the wireless router, but can’t pass the post-authentication domain, and will be redirect to client download page by SACG in post-authentication domain.
Alarm Information
None.
Handling Process
1, enter TSM management interface.
2, click “configuration management” in the top of the IE browser.
3, click “access control>hardware SACG” on the left menu of IE browser.
4, click “add”.
5, add the actual local IP segment of the wireless user
Root Cause
When the internal network user through the wireless router connecting, the local IP address is the address segment which is assigned for wireless router, it is possible that the TSM SACG didn’t record the address segment.
Suggestions
When configuring the hardware SACG in TSM, must fill the IP network segment which needs to be managed and controlled in the corresponding hardware SACG to avoid the situation that can’t access the post-authentication domain after passed the authentication.
END
