cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
542
Views
0
Helpful
0
Replies

Dot1x Authentication problems

Network Engineer
Beginner
Beginner

Hi,

In our network we use dot1x authentication to authenticatie devices to the network. When devices are authenticated they get the right vlan assignment. When this fails they will get the guest vlan assigned. Lately we see a lot of pc's that cannot login on the network because they are not authenticated right. When i check the interface authentication process the dot1x service status is stopped:

sh access-session interface gi1/0/12 details 
            Interface:  GigabitEthernet1/0/12
               IIF-ID:  0x101430000001656 
          MAC Address:  8cdc.d436.a930
         IPv6 Address:  Unknown
         IPv4 Address:  10.212.12.13
            User-Name:  8cdcd436a930
               Status:  Authorized
               Domain:  DATA
       Oper host mode:  multi-domain
     Oper control dir:  both
      Session timeout:  N/A
    Common Session ID:  0AD40D05000154A4725862FE
      Acct Session ID:  0x0001F08F
               Handle:  0x14000CA6
       Current Policy:  POLICY_Gi1/0/1

Local Policies:
        Service Template: GUEST_VLAN_Gi1/0/1 (priority 150)
           Vlan Group:  Vlan: 12

Method status list:
       Method           State
       dot1x            Stopped
       mab              Stopped

 

We use Windows NPS as radius server. Checking the event viewer on this server i don't see any request from this pc.

I am figuring out why the dot1x method stopped. Is this an issue on the switch or on the client? Or does the NPS server not respond?

0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers