Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Radius local server and wireless access points

Hello to all,

I would like to ask a question related to radius server. I have a Allied telesis core switch and i configure the radius server locally, also i configure the port1.0.7 for dot1x and i am using dynamic vlan. If i connect my laptop to port 1.0.7 i can get the correct ip from the dhcp server. If i connect an access point to the same port , how i should configure the dot1x ? for multiple hosts? I know i am using allied telessis but the config is very similar to the cisco: take a look:

(Radius and nas config)

radius-server host 127.0.0.1 key awplus-local-radius-server

!

aaa authentication dot1x default group radius

aaa authentication auth-web default group radius

!

crypto pki trustpoint local

!

crypto pki enroll local

radius-server local

server enable

nas 127.0.0.1 key awplus-local-radius-server

group Andrew

  attribute NAS-Identifier andrew

  attribute Tunnel-Medium-Type IEEE-802

  attribute Tunnel-Private-Group-Id 10

  attribute Tunnel-Type VLAN

user andrew encrypted password wh8q0J2oYSn0y4cynksNCqfbaUtRGv/E6JaJrW+s3Zs= group Andrew

!

(port config)

interface port1.0.7

switchport

switchport mode access

auth-web enable

dot1x port-control auto

auth host-mode multi-supplicant

auth dynamic-vlan-creation

I tried with auth-web and without but no luck. If someone have a sample config how to configure the dot1x to be able to use access point please paste it.

Thanks

Andrew

305
Views
0
Helpful
0
Replies