Radius-Server Failure

Unanswered Question
Jan 11th, 2010
User Badges:

Can anyone help me with the command that acts as a failsafe for dot1x.


If the both radius servers go down, what is the command to automatically authorize everyone into there native vlan?


Kind Regards


Dan

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jatin Katyal Mon, 01/11/2010 - 14:14
User Badges:
  • Cisco Employee,

Hi Dan,


when radius server is not available and you want to allow everyone to the network for that we need to configure IAB on the switch:

Configuring 802.1X with Inaccessible Authentication Bypass:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/40sg/configuration/guide/dot1x.html#wp1203805

Please ensure that you DO configure,

# RADIUS test username
# Radius idle-time
# Radius deadtime, and
# Radius dead-criteria.

For IAB to work properly.

The configuration details can be found from,

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/40sg/configuration/guide/dot1x.html#wp1143560


HTH


Regards,

JK


Plz rate helpful posts-

Actions

This Discussion