Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
866
Views
0
Helpful
1
Replies

dot1x on 2950

robert.dobson
Level 1
Level 1

‎11-23-2004 02:40 PM - edited ‎03-10-2019 01:54 PM

Hello,

I have a 2950 and have tried in vain to confure a single port to try out dot1x authentication on it.

When I set dot1x port control to auto, and check the status of the port using "Show dot1x all" command it keeps saying the port status is "n/a".

It was my understanding the port should default to "Unauthorized" and not forward traffic until authenticated.

Not sure why, i have followed the documentation from Cisco. Even if my radius aaa config is wrong, should the port not be stopping regular traffic?

Does bootp traffic forward on a dot1x port before authorization?

Thanks,

- Rob

Labels:
0 Helpful
1 Reply 1

jafrazie
Cisco Employee
Cisco Employee

‎11-23-2004 03:44 PM

The port status is n/a most likely b/c you do not have L1 connectivity to the port.

If you plug something into it, the status should look something like this:

Dot1x Info for interface FastEthernet0/48

----------------------------------------------------

Supplicant MAC

AuthSM State = CONNECTING

BendSM State = IDLE

PortStatus = UNAUTHORIZED

bootp traffic should not be forwarded before dot1x authorization.

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents