Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Highlighted
New Member

PXE Boot fails on port with Authentication Open

We are in scenario of moving fully to dot1x. we have rolled out 802.1x with authentication open and during moving to new workplace system it will get enforced.

the problem we are facing now is that from time to time the PXE installation fails although authentication open is configured. i´m talking here of 1x out of 10.

i´m not sure if i really can dismiss the thinking that 802.1x configuration on the port is not the root cause

 

this is our port configuration:

interface GigabitEthernet3/1
 authentication control-direction in
 authentication event fail action next-method
 authentication event server dead action authorize
 authentication event server dead action authorize voice
 authentication event server alive action reinitialize
 authentication host-mode multi-domain
 authentication open
 authentication order dot1x mab
 authentication port-control auto
 authentication periodic
 authentication timer reauthenticate 36000
 authentication violation restrict
 mab
 dot1x pae authenticator
 dot1x timeout tx-period 3

 

my thinking is that with authentication open all packets shall be allowed to be forwarded. is it true? moreover the mac address is inserted in the MAB-database.

 

does anybody have similar experiences or an idea?

 

we already tried to dismiss the configuraiton but we are just able to do empiric tests as we are currently in a rollout we don´t have the chance to do heavy tests (during lab we were fine).

112
Views
0
Helpful
0
Replies
CreatePlease login to create content