Hello all!
I've been having some issues with Cisco IP phones losing their authentication with ACS Ver 5.8. This normally happens if a customer unplugs their phone or moves it around a lot. It loses its authorization and then gets stuck on the switch in an Unauth state.
The only solution I currently have to get the phones to authenticate with ACS and register with Call Manager after this happens is to default the port and reconfigure it exactly the same way.
The following is the port configuration I currently have set up.
description 802.1x Controlled
switchport access vlan 999
switchport mode access
switchport voice vlan 888
authentication host-mode multi-domain
authentication order mab
authentication priority dot1x mab
authentication port-control auto
authentication periodic
mab
spanning-tree portfast
spanning-tree bpduguard enable
I appreciate any help anybody can provide, and I can provide more information if needed.