01-11-2010 01:03 PM - edited 03-10-2019 04:53 PM
Can anyone help me with the command that acts as a failsafe for dot1x.
If the both radius servers go down, what is the command to automatically authorize everyone into there native vlan?
Kind Regards
Dan
01-11-2010 02:14 PM
Hi Dan,
when radius server is not available and you want to allow everyone to the network for that we need to configure IAB on the switch: Configuring 802.1X with Inaccessible Authentication Bypass: http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/40sg/configuration/guide/dot1x.html#wp1203805 Please ensure that you DO configure, # RADIUS test username # Radius idle-time # Radius deadtime, and # Radius dead-criteria. For IAB to work properly. The configuration details can be found from, http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/40sg/configuration/guide/dot1x.html#wp1143560
HTH
Regards,
JK
Plz rate helpful posts-
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community