we have in our network ACS Server 5.3 and we use cisco port based authentication
we store all MAC Address in our ACS Server we user Per Host Authentication
So If any PC or Laptop Connected to any Switch the Switch ask the ACS Server for his MAC if he find the MAC Address in ACS this PC connected to inside VLAN if he does not find this MAC in ACS Server Database, the Switch Connected this Host to Guest vlan
our Switch Config is :
aaa authentication dot1x default group radius
aaa authorization network default group radius
aaa accounting dot1x default start-stop group radius
Since there is no order/priority set so by-default it attempts dot1x first and then mab. The workstation that requests access to the LAN, and responds to requests from the switch. The workstation must be running 802.1X-compliant client software.
Could you please share the 802.1x settings from your pc connected behind the switch port.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...