Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

802.1X Problem for CAT-5500 and ACS 3.2

I keep getting error msgs on ACS 3.2: "Bad request from NAS", and "Invalid message authenticator in EAP request"

Here is the config for Cat-5500:

set radius server 10.0.0.4 auth-port 1812 primary

set radius key xxxx

set dot1x system-auth-control enable

set port dot1x 4/1 port-control auto

set port dot1x 4/1 initialize

I then follow the ACS configuration using this link: http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00801d11a4.shtml

Thanks,

Audie Onibala

2 REPLIES
Bronze

Re: 802.1X Problem for CAT-5500 and ACS 3.2

This problem is usually caused by (1) having a bad key, (2) wrong IP defined in ACS, or (3) wrong protocol defined in the ACS server.

New Member

Re: 802.1X Problem for CAT-5500 and ACS 3.2

I am using RADIUS IETF. The secret key and IP addresses for the switch and RADIUS (ACS) server have been recheck countless times.

Thanks,

Audie

95
Views
0
Helpful
2
Replies
CreatePlease login to create content