Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Bronze

802.1x bypassed?

Hi everybody.

I have  a question on 802.1x.

h1-----------hub---------f1/1-SW-------Radius server.

                     |

                     h2

h1 is a legitimate user while h2 is not.  h1 powers up while h2 is off.  h1 uses 802.1x and gets authenticated as a result switch( authenticator) transitions the port to authorized state

My question is if h2 powers up ,  will it not be able to access the network without going through any authentication because the f1/1 is already in authorized state?

thanks and have a great week

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Community Member

802.1x bypassed?

That largely depends on the port configuration - you can define what mode your port operates under for 802.1x.

This link has a lot of good info on the various modes and what remifications each has on the authC/authZ process:

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750x_3560x/software/release/15.0_1_se/configuration/guide/sw8021x.html#wp1192140

Labbing it up and testing with the various deployment models(single host, host & phone, multi-host, etc) is usually a good idea - and in some cases my clients have had to set different ports in different modes depending on their use. Trying to nail down a single standard can be tough.

1 REPLY
Community Member

802.1x bypassed?

That largely depends on the port configuration - you can define what mode your port operates under for 802.1x.

This link has a lot of good info on the various modes and what remifications each has on the authC/authZ process:

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750x_3560x/software/release/15.0_1_se/configuration/guide/sw8021x.html#wp1192140

Labbing it up and testing with the various deployment models(single host, host & phone, multi-host, etc) is usually a good idea - and in some cases my clients have had to set different ports in different modes depending on their use. Trying to nail down a single standard can be tough.

681
Views
0
Helpful
1
Replies
CreatePlease to create content