Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2011
Views
5
Helpful
5
Replies

AAA- missing configuration on Catalyst 3650

Go to solution
INEMINEMINEMINEM
Level 1
Level 1

‎05-11-2021 03:53 PM

Hello guys,

 

I'm trying to configure 802.1x on my LAB environment on a old catalyst 3650 to connect to ISE.

 

Switch Ports    Model                   SW Version   SW Image
------ -----  -----                    ----------  ----------
*        1 26      WS-C3560-24PS  12.2(46)SE    C3560-ADVIPSERVICESK9-M

 

The issue that I have is that from the below commands in RED the authentication are missing, I cannot enter these commands.

 

interface fastEthernet 0/1
 switchport mode access 
 switchport access vlan 1
 spanning-tree portfast
 spanning-tree bpduguard enable 
 ip access-group PRE-AUTH in
 authentication priority dot1x mab
 authentication order dot1x mab
 authentication port-control auto
 authentication event fail action next-method
 authentication event server alive action reinitialize
 authentication host-mode multi-auth
 authentication periodic
 authentication violation restrict
 dot1x pae authenticator
 dot1x timeout tx-period 10
 dot1x violation-mode protect
 mab

Any idea what is going on?

 

SW Version, SW Image?

 

Thanks in advanced.

 

Best Regards,

INEM

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
5 Replies 5

Go to solution
Greg Gibbs
Cisco Employee
Cisco Employee

‎05-11-2021 04:52 PM

That code version has limited support for NAC and those commands are not available. See the Configuration Guide for that release.

Those commands were not introduced until the 12.2(55)SE code train.

I'm not sure if you will be able to find code for that switch anymore, however, as it has been end of support since 2015.

Go to solution
INEMINEMINEMINEM
Level 1
Level 1
In response to Greg Gibbs

‎05-12-2021 12:45 AM

Hi Greg,

 

Can you point me what IOS have these command supports from the link below:

 

https://software.cisco.com/download/home/282979363/type/280805680/release/12.2.55-SE13

 

Thanks in advanced.

 

Best Regards,

INEM

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to INEMINEMINEMINEM

‎05-12-2021 03:43 AM

Download 3650 Firmware from below :

12.2.55-SE12 MD

 

https://software.cisco.com/download/home/282526526/type/280805680/release/12.2.55-SE12?catid=268438038

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Greg Gibbs
Cisco Employee
Cisco Employee
In response to INEMINEMINEMINEM

‎05-12-2021 04:27 PM

You are missing a key point here. The output you posted from 'show version' lists the platform as WS-C3560-24PS. This hardware is not a 3650, but rather a 3560 which is End of Support.

The 3750-X software links posted are not compatible with this platform.

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to Greg Gibbs

‎05-12-2021 07:33 PM

@Greg Gibbs  good catch...........grrr missed it.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents