Abstract: Examples disclosed herein relate to a method comprising receiving, at a network device, an authentication message intended for a user from an authentication server. The network device may be registered with the authentication server as a source device for the user. The method may also include determining, by the network device, a management device for the user that is the intended recipient of the authentication message. The authentication server is not configured to securely connect to the management device directly. The method may also include transmitting the authentication message from the network device to the determined management device.

Abstract: An access point, comprising: a processing resource; and a memory resource storing machine-readable instructions to cause the processing resource to: assign a first tunnel tag to a first DHCP profile of a client device, the first tunnel tag identifying a primary VLAN tunnel to a first network controller of a first data center; assign a second tunnel tag to a second DHCP profile of the client device, the second tunnel tag identifying a secondary VLAN tunnel to a second network controller of a second data center; determine whether the primary VLAN tunnel to the first network controller is inactive based on a number of detected access failures; and connect the client device to the secondary VLAN tunnel in response to determining that the primary VLAN tunnel is inactive.

Abstract: Examples disclosed herein relate to a method comprising receiving, at a network device, an authentication message intended for a user from an authentication server. The network device may be registered with the authentication server as a source device for the user. The method may also include determining, by the network device, a management device for the user that is the intended recipient of the authentication message. The authentication server is not configured to securely connect to the management device directly. The method may also include transmitting the authentication message from the network device to the determined management device.

Abstract: An access point, comprising: a processing resource; and a memory resource storing machine-readable instructions to cause the processing resource to: assign a first tunnel tag to a first DHCP profile of a client device, the first tunnel tag identifying a primary VLAN tunnel to a first network controller of a first data center; assign a second tunnel tag to a second DHCP profile of the client device, the second tunnel tag identifying a secondary VLAN tunnel to a second network controller of a second data center; determine whether the primary VLAN tunnel to the first network controller is inactive based on a number of detected access failures; and connect the client device to the secondary VLAN tunnel in response to determining that the primary VLAN tunnel is inactive.