PC 5548, Dynamic VLAN Assignment using FreeRADIUS... need some assistance

Hello,

 

I have everything setup as directed in the PC 5548 manual but I cannot get this to work properly with the PC 5548. This works perfectly with other switches.

I have a FreeRADIUS server setup, the MAC authentication is working properly (I'm seeing the successful "Access-Accept" notification in the debug logs) but there is an error on the switch console that I cannot seem to resolve:

%SEC-W-SUPPLICANTUNAUTHORIZED: MAC 00:12:34:56:78:90 was rejected on port gi3/0/9 because Radius accept message does not contain VLAN ID

 

I want the MAC to authorize via RADIUS and be assigned to VLAN 40. I have the following attributes setup in the FreeRADIUS server:

Tunnel-Type = VLAN

Tunnel-Medium-Type = 802

Tunnel-Private-Group-Id = 40

I've tested the RADIUS replies using NTRadPing and see the accept, as well as the reply attributes comming over exactly as they have been setup so I know the FreeRADIUS server is sending them as confgured. 

This exact config works on a Cisco SG300 (which is a very similar firmware) as well as two other switches I had in the closet. I've tried to chagne the Tunnel-Priivate-Group to 0040, 040, VLAN40, etc... and nothing is working properly.

Does the PC 5548 need specific values or formatting for these RADIUS reply attributes?

Anything I am missing from this setup?

Any and all help would be appreciated as this is driving me insane.

 

PS - I am not the only one: http://www.experts-exchange.com/Networking/Misc/Q_27749730.html