ACS Server:ver 3.3
Active Directory: Win2000 Server SP4 installed with cisco remote agent.
Client Workstation: WinXP Pro SP2
I've enable dot1x on the switch and everythings works fine for client until I get msg "The system cannot log you on because domain <domain> is not available". This prob only occured when:-
1)New user is added in AD and that user is trying to login to network through enabled dot1x port from any workstation within the domain.
2)Authenticated user logoff from one workstation and try to login using another workstation which he/she has never been logged into.
Is it got anything to do with microsoft caching? FYI,I using PEAP (MS-CHAPv2)config on both ACS Server and client workstation.