Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1186
Views
0
Helpful
3
Replies

802.1X with PXE

remco.gussen
Level 1
Level 1

‎03-04-2009 07:11 AM - last edited on ‎03-25-2019 05:25 PM by Community Manager

Hi

I'm looking for a solution for a 802.1X with PXE boot problem. When computer boots, there is no authentication material to authenticate by RADIUS. So switch keeps the port in "unauthenticated" or "guest" VLAN. I do not want to put the RIS / Imaging server in these VLAN's. Is there a solution for this problem ?

Labels:
0 Helpful
3 Replies 3

jafrazie
Cisco Employee
Cisco Employee

‎03-04-2009 11:49 AM

We've had folks find success with this by using MAC-Auth-Bypass. Essentially, since PXE initially boots as a "non-1X" device, MAB can be a way to authenticate the machine with the MAC in the absence of 1X itself.

0 Helpful

remco.gussen
Level 1
Level 1
In response to jafrazie

‎03-05-2009 12:02 AM

What will happen when machine shows the Windows Login screen ? It still wants to authenticate with the mac address instead of the computer / user certificate I assume..

0 Helpful

jafrazie
Cisco Employee
Cisco Employee
In response to remco.gussen

‎03-05-2009 06:20 AM

So I assume the image you load via PXE wil either be enabled for 1X already, or not. If enabled, it can 1X just fine. If not, you can continue to use MAB.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents