Buy or Renew
Buy or Renew
Notice: The file download function is disabled. We apologize for the inconvenience.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
602
Views
0
Helpful
1
Replies

IP phone not authenticating with dot1x port configuration / ACS

maloumar1234
Level 1
Level 1

‎07-15-2005 12:56 PM - edited ‎03-10-2019 02:13 PM

I am trying to setup an IP phone connected to a 3560 switch.

The port is configured with dot1x.

Switch talks to an ACS server for authentication. I cannot get the phone to authenticate and register with callmanager

Switch config:

aaa new-model

aaa authentication login default none

aaa authentication enable default enable

aaa authentication dot1x default group radius

aaa authorization network default group radius

!

dot1x system-auth-control

!

PHONE PLUGGED INTO THIS PORT

interface FastEthernet0/4

switchport mode access

mls qos trust cos

dot1x port-control auto

no mdix auto

!

Note: I also tried putting the voice vlan in here, still did not work.

!

radius-server host 192.168.1.30 auth-port 1612 acct-port 1646 key cisco

!

Switch debugs shows a mac address of all 0's when authenticating.

Does anyone out there have a good sample config for 802.1x and IP phones with ACS.

I looked at almost all the cisco tech docs.

Labels:
0 Helpful
1 Reply 1

jafrazie
Cisco Employee
Cisco Employee

‎07-15-2005 03:07 PM

You need a VVID configured. What image are you running on the 3560?

0 Helpful
Customers Also Viewed These Support Documents