When I do a debug on Radius I get nothing. When I do a debug on dot1x I get a lot of messages. Could you please help me to understand what you did on your config. Also, how did you setup Windows XP? I am currently using XP with SP1.
Yes this helped. The switch contacted the radius server and I saw log messages from it. However, I now need help getting the PC to authenticate to the radius server. I am using freeradius. I am open to any ideas anyone has.
Is the IP communication between the switch and the radius server fine ? Is the radius server on a seperate segment ? Once u have this setup, u just need to define the username/password on the radius server and see if authenticates thro the switch. do a debug aaa authentication, debug dot1x events/packets etc to see what happens when the user logs in !!!
aaa authentication dot1x default group radius local
dot1x guest-vlan supplicant
switchport access vlan 777
switchport mode access
dot1x port-control auto
dot1x timeout tx-period 15
dot1x guest-vlan 10
ip dhcp snooping trust
If authentication phase passes, the user will be put in VLAN 777. if there is any guest plugging into this PC, without a dot1x client, he will be put on guest vlan 10..
Hope this helps.. all the best. rate replies if found useful..
hye hairinirina, i'm also have the same problem, but cannot be solved till now, user authentication failed to log on to network, could u give me some advice regarding to this problem, any configuration examples...thanks..
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :