Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
612
Views
0
Helpful
1
Replies

Per user ACL with dot1x wired

will.shaw
Level 1
Level 1

‎04-20-2005 02:29 AM - edited ‎03-10-2019 02:07 PM

Is it possible to apply a per-user ACL from ACS3.2 to a wired 802.1x port on a 3560?

I have got dot1x authentication and vlan assignment working perfectly, when looking at the debug it says it sucessfully applied the per-user acl; however the user can still access everything. is there something I am missing?

Labels:
0 Helpful
1 Reply 1

jafrazie
Cisco Employee
Cisco Employee

‎04-20-2005 07:42 AM

Did you configure the ACL on the backend RADIUS server?

After the port is authorized, perform a "show access-lists". You should see the ACL, with an asterisk indication that it's a per-user ACL, that's been applied dynamically (which will disappear when the port becomes unauthorized).

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents