Hi Pros,

Having an issue with an 881 I have recently acquired. I'm wanting to setup a Virtual Office scenario. Everything is working fine except for 802.1x...

I can get the 881 to authenticate things connected to it, but I don't have the options of guest-vlan or auth-fail vlan.

Idea is if the users takes the router home and someone, either accidentally or on pupose, connects an unauthorized Laptop, they stay off the Corp network but can get to the internet still.

I found this link on Cisco's site:

http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6660/ps6808/deployment_guide_c07_458259_ns855_Networking_Solutions_White_Paper.html

That link shows them configuring a guest vlan right on the fa0-3 ports of an 881W. I dont have that option on mine. I can only configure 802.1x on the vlan interface. I have 802.1x working, for things that connect to vlan1, but I would like to have a "fallback" setup.

EZVPN_Remote(config-if)#int fa1

EZVPN_Remote(config-if)#dot

EZVPN_Remote(config-if)#dot1?

dot1q

EZVPN_Remote(config-if)#dot1

EZVPN_Remote(config-if)#int vlan1

EZVPN_Remote(config-if)#dot1x ?

  default           Configure Dot1x with default values for this port

  host-mode         Set the Host mode for 802.1x on this interface

  max-reauth-req    Max No.of Reauthentication Attempts

  max-req           Max No.of Retries

  pae               Set 802.1x interface pae type

  port-control      set the port-control value

  reauthentication  Enable or Disable Reauthentication for this port

  timeout           Various Timeouts

Any thoughts why I'm seeing this behavior? Feature-set? IOS Version?

EZVPN_Remote#sh ver

Cisco IOS Software, C880 Software (C880DATA-UNIVERSALK9-M), Version 15.1(2)T4, )

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2011 by Cisco Systems, Inc.

Compiled Tue 12-Jul-11 21:02 by prod_rel_team

ROM: System Bootstrap, Version 12.4(22r)YB5, RELEASE SOFTWARE (fc1)

EZVPN_Remote uptime is 6 hours, 1 minute

System returned to ROM by reload at 14:53:21 UTC Thu Oct 13 2011

System restarted at 14:52:47 UTC Thu Oct 13 2011

System image file is "flash:c880data-universalk9-mz.151-2.T4.bin"

Last reload type: Normal Reload

Last reload reason: Reload Command

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

use. Delivery of Cisco cryptographic products does not imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to

export@cisco.com.

Cisco 881 (MPC8300) processor (revision 1.0) with 236544K/25600K bytes of memor.

Processor board ID FTX153482GK

5 FastEthernet interfaces

1 Virtual Private Network (VPN) Module

256K bytes of non-volatile configuration memory.

126000K bytes of ATA CompactFlash (Read/Write)

License Info:

License UDI:

-------------------------------------------------

Device#   PID                   SN

-------------------------------------------------

*0        CISCO881-SEC-K9       xxxxxxxx

License Information for 'c880-data'

    License Level: advipservices   Type: Permanent

    Next reboot license Level: advipservices

Thanks in advance!