Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Dot1x Issue

Hi all, I am testing dot1x function, I am using ACS for the radius authentication.

I think the dot1x work properly in window XP SP 2 version but fail in window XP SP3 that is

When I using Window XP SP2 PC to login with correct username "abc" but invaid password, the PC will prompt me to input

second time, after second try also input invaid password, the PC will prompt me to input third time. After third try also

input invaid password, the PC will be assigned to Authen Fail vlan "999"

However, if I using window XP SP3 PC to login with correct username "abc" but invaid password, the PC will "NOT" prompt me to input second time

Auy expext can help me to fix the problem?

interface FastEthernet0/24

switchport mode access

load-interval 30

dot1x pae authenticator

dot1x port-control auto

dot1x violation-mode protect

dot1x timeout tx-period 10

dot1x max-reauth-req 5

dot1x guest-vlan 99

dot1x auth-fail vlan 999

spanning-tree portfast

1 REPLY
Hall of Fame Super Silver

Re: Dot1x Issue

Hello Jack,

look for this article in MS knowledge database

949984

or also

http://www2.usit.uio.no/it/studentbynett/english/guides/802.1X/wXP.html

this may be related to your issue.

the difference may be a register value in 802.1X client sw that sets number of attempts to 1

Hope to help

Giuseppe

128
Views
0
Helpful
1
Replies
CreatePlease to create content