Radius-Server Failure

Unanswered Question
Jan 11th, 2010

Can anyone help me with the command that acts as a failsafe for dot1x.

If the both radius servers go down, what is the command to automatically authorize everyone into there native vlan?

Kind Regards

Dan

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jatin Katyal Mon, 01/11/2010 - 14:14

Hi Dan,


when radius server is not available and you want to allow everyone to the network for that we need to configure IAB on the switch:

Configuring 802.1X with Inaccessible Authentication Bypass:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/40sg/configuration/guide/dot1x.html#wp1203805

Please ensure that you DO configure,

# RADIUS test username
# Radius idle-time
# Radius deadtime, and
# Radius dead-criteria.

For IAB to work properly.

The configuration details can be found from,

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/40sg/configuration/guide/dot1x.html#wp1143560


HTH


Regards,

JK


Plz rate helpful posts-

Actions

This Discussion