Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
398
Views
0
Helpful
1
Replies

802.1x Certificate Renewal

muhammadsafwan
Level 1
Level 1

‎10-20-2008 08:34 PM - edited ‎03-09-2019 09:42 PM

Hi,

I have customer planning to deploy 802.1x in their wired network.

1. They are using certificate, username and password to authenticate.

2. Unauthorized user will be assigned to Guest Vlan with limited access to the network.

3. The problem is, when the certificate is expired, user wont be able to authenticate to the network.

4. How to allow user to renew the certificate when then dont have access to their network? Is there any work around?

Thanks

Labels:
0 Helpful
1 Reply 1

scadora
Cisco Employee
Cisco Employee

‎10-21-2008 09:51 AM

Users who fail 802.1X are not assigned to the Guest VLAN. They are denied access or, if the auth-fail VLAN is configured on the switch, they will go to the auth-fail VLAN. You can configure the auth-fail VLAN with enough access to get to the CA to renew the cert.

Shelly

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents