Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
449
Views
0
Helpful
4
Replies

mac address bypass and recovery

Go to solution
CSCO11968887
Level 1
Level 1

‎04-27-2016 02:12 AM - edited ‎03-10-2019 11:42 PM

switch:c2960-48TC-L IOS Version 15.0(2)EX5
Radius ACS3.3

aaa authentication dot1x default group radius
aaa accounting dot1x default start-stop group radius

radius-server host 10.0.0.13 auth-port 1812 acct-port 1813 key 7 xxxxxxxxx

interface FastEthernet0/9
switchport mode access
authentication event server dead action reinitialize vlan 1
authentication event server alive action reinitialize
authentication host-mode multi-auth
authentication order mab
authentication priority mab
authentication port-control auto
authentication periodic
authentication timer reauthenticate 60
mab
spanning-tree portfast

i only use MAB not use 802.1X and MAC passed MAB authentication,
when RADIUS server becomes unavailable , i hope MAC bypass and don't disconnect session,after into Critical VLAN
when RADIUS server becomes available from unavailable , i hope Critical VLAN auto return to common VLAN and don't disconnect session
can MAB  do it ?

i try following command but fail
authentication event server alive action reinitialize
authentication recovery delay 1

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎04-27-2016 01:34 PM

Hi there, can you try the following instead:

authentication event server dead action authorize vlan <your VLAN>
authentication event server alive action reinitialize

Thank you for rating helpful posts!

View solution in original post

0 Helpful
4 Replies 4

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎04-27-2016 01:34 PM

Hi there, can you try the following instead:

authentication event server dead action authorize vlan <your VLAN>
authentication event server alive action reinitialize

Thank you for rating helpful posts!

0 Helpful

Go to solution
CSCO11968887
Level 1
Level 1
In response to nspasov

‎04-28-2016 10:01 PM

i try it

but recovery mechanism

don't work

0 Helpful

Go to solution
nspasov
Cisco Employee
Cisco Employee
In response to CSCO11968887

‎04-29-2016 09:58 AM

Just to confirm, the VLAN authorization works when the server is "dead" but then the reinitialization does not work when the server is "alive" ?

Thank you for rating helpful posts!

0 Helpful

Go to solution
CSCO11968887
Level 1
Level 1
In response to nspasov

‎05-03-2016 03:38 AM

yes , when the server is "dead" but then the reinitialization does not work when the server is "alive"

 is  "authentication event server alive action reinitialize" work on 802.1x ?

0 Helpful
Customers Also Viewed These Support Documents