SD-Access Fabric disable 802.1X for Wired connection

DuNguyen1212 · ‎05-26-2022

Hi all,

I have SDA Fabric and all config pushed by DNA Center.

I see DNA Center push config relate to AAA (class-map, policy-map, template, assign template to interface)

I want disable 802.1x only wired connection.

Has anyone done this yet?

p/s: i had attach config file push by DNAC

Thank you very much for your interest!

DuNguyen1212 · ‎05-26-2022

I want

Wired client will use MAB

Wireless client use 802.1x

Flavio Miranda · ‎05-27-2022

Hi

There are two ways to execute this. You can do it manually on the switch in ports assignment and chage the security.

Or you can create a template with necessary command, attach the template to a FIAB and apply to all or some devices.

markus.forrer · ‎05-28-2022

Hi DuNguyen1212

So for MAB, ISE is still in place, so you need 802.1x configuration on the switches for wired authentication.

What I did so far in my deployments, you can change the order for the closed authentication template.
MAB first, then 802.1x.

802.1x for the wireless client is configured through the SSID configuration