Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
313
Views
0
Helpful
3
Replies

Global 802.1x Project

mike-greene
Level 4
Level 4

‎03-06-2007 06:14 AM - edited ‎03-05-2019 02:44 PM

Hi,

We are currently looking at 802.1x as solution to manual port security but I have heard horror stories about 802.1x deployments due to third party supplicant etc. Were looking at using Microsoft certificate services and Microsoft RADIUS services for the global deployment. Most of the systems are running XP SP2. Has anyone done large scale 802.1x deployments?? If so any advice on what to do and what not to due before I get this into the lab?

Thanks.

Labels:
0 Helpful
3 Replies 3

Amit Singh
Cisco Employee
Cisco Employee

‎03-06-2007 10:10 AM

Mike,

I dont have experience with microsoft RADIUS service but I have recently done a demo project for one of my customer for IBNS using 802.1x with guest vlan and failed authentication vlan user assignment.We have use Cisco ACS4.0 server for RADIUS services and used Windows XP's built-in 802.1x supplicant. We used Microsoft PEAP with the certificate service and it all went pretty well.

I have used Cisco's 802.1x supplicant and it has worked pretty well in my tests.You might have to upgrade you switches to the latest IOS for support of authentication failed vlans. The older IOS doesnot have the authentication failed feature.

HTH,

-amit singh

0 Helpful

mike-greene
Level 4
Level 4
In response to Amit Singh

‎03-06-2007 01:13 PM

Amit,

Thanks for the response. Can you send me a link to "failed authentication vlan"? Is this an IBNS feature?

Thanks,

Mike

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card