Dot1x - guest-critical vlan - validating certificate looping

Unanswered Question
May 21st, 2009
User Badges:

Really don't know if it is normal, dot1x authentication is working well, using EAP-TLS againts an IAS and windows certificate server.

Question is: the guest Vlan or critical vlan when assigned are working fine except the DHCP Icon still running indicating "validating identity" giving the feeling to the users it is not working even if ip address were well assigned and working well.

Is there a setup I am missing somewhere ?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jafrazie Wed, 06/03/2009 - 13:08
User Badges:
  • Cisco Employee,

No, this is most likely b/c you're catching it when the supplicant has sent out an EAPOL request and the switch is now ignoring it (if it places the PC in guest or critical).

Refreshing the status will work .. should be 30 or 60 sec .. not sure for the windows native supplicant.


This Discussion