I have an C4506 with a WS-X4548-GB-RJ45V module. I am running version Version 12.2(54)SG, I have implementet 802.1X on the access-ports but I can´t get multi-domain configuration to work.
Mostly the PC-client is connected to the phone and the phone is connected to the switchport. In the ACS5.1 loggs the client and telephone are authenticated correctly, The client runns EAP-TLS and the phone does MAB. The PC gets an IP address but it can´t reach anything, not even his default gateway.
When I switch to multi-host it works and the client , and phone is able to communicate, but then I have security issues and timeout problems.
DOES ANY ONE OUT THERE HAVE THE SAME PROBLEM ??
Below is my portconfiguration.
description 802.1X enablad port ANC70101D03
switchport mode access
switchport voice vlan 94
qos trust device cisco-phone
authentication event fail action authorize vlan 229
authentication event server dead action authorize vlan 229
authentication event no-response action authorize vlan 229
authentication host-mode multi-domain
authentication order dot1x mab
authentication port-control auto
authentication timer reauthenticate server
no snmp trap link-status
dot1x pae authenticator
dot1x timeout quiet-period 5
dot1x timeout tx-period 5
service-policy input voice-services