Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

authentication event server dead action for radius group

Hi,

Need help to understand "authentication event server dead " on interface configuration of the IOS.

I found this applies globally, I mean this condition is triggered if all radius servers are dead.

How if we want to make this condition for only one group of radius?

BR

Tomi

Everyone's tags (2)
3 REPLIES
Cisco Employee

The command is used to

The command is used to configure action(s) that will be taken for ports configured for authentication in the event when all Radius servers become unavailable. For instance:

authentication event server dead action authorize vlan 55

authentication event server alive action reinitialize 

With the above syntax, the configured port will be authorized/fail-open to VLAN 55 if/when the globally configured Radius servers become unavailable. Once the server(s) become available again all of the configured ports will be re-initialized, thus forcing them to perform regular dot1x/mab authentication. 

The command is configured per-port and cannot be tied to a set of Radius servers. The radius servers used are configured under your global aaa commands.

Hope this helps

 

Thank you for rating helpful posts!

Thank you for rating helpful posts!
New Member

hi Neno,

hi Neno,

one small query here.

now the command also gives <cr> on

authentication event server dead action authorize ?

so if i do not specify any VLAN what happens then???

thanks,

Nick

Cisco Employee

http://www.cisco.com/c/en/us

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750x_3560x/software/release/12-2_55_se/configuration/guide/3750xscg/sw8021x.html#wp1274284

link explains the following command

authentication event server dead action {authorize | reinitialize} vlan vlan-id


this is interface level  command

2181
Views
0
Helpful
3
Replies