Default 802.1x config does not work w/ the guest VLAN

Unanswered Question
Jul 20th, 2006
User Badges:

I am trying to enable 802.1x to get guests into a guest VLAN. These guest should be able to accomplish this without any assistance from tech staff.

Unfortunately, I can't get this to work. By default, Windows XP is configured with 802.1x enabled using EAP-TLS. Since the machine lacks a certificate, the client complains. The switch will eventually move the port into the guest VLAN but the client doesn't know and continues to complain.

Anyone know what I can do to get it to work?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
smalkeric Wed, 07/26/2006 - 10:01
User Badges:
  • Silver, 250 points or more

Restart the client and try whether it is getting the valid certificate since the client authentication has been logoff when the client is restarted and after reloading the reauthentication takes place,there might be a chance of getting the valid digital certificate from authentication server.

jafrazie Wed, 07/26/2006 - 14:43
User Badges:
  • Cisco Employee,

This should not work. The only way to get this to work is to disable 1X on the PC.


This Discussion