Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1557
Views
0
Helpful
3
Replies

Cisco CE500 with dot1x issue

Edgar Servin
Level 1
Level 1

‎05-10-2011 02:52 PM - edited ‎02-21-2020 04:20 AM

Hi,

I have a Cisco Switch CE500 and I need to function reliably dot1X. I used the "Network Assistant" and It did not work, dropped all ports connected to PCs that have the certificate. I have a network of switches running Cisco 2950/2960 with dot1x working properly. I access to http "exec mode" of the CE500 and I do comparing the text configuration between the CE500 and 2960, I edited the settings so that CE500 are the same text of 2960 but did not work.

I have the profile for the switch in my RADIUS Server. In the CE500 I have the ip address of the RADIUS, key, AAA RADIUS, "aaa new-model"

If, I eliminate the switch profile for the RADIUS, It logs me the device don't have profile for AAA.

Attached example files

ce500.txt ---- don't work

2960.txt ------ it´s working well

Help me please!

86082-2960.txt.zip
86083-ce500.txt.zip
0 Helpful
3 Replies 3

Edgar Servin
Level 1
Level 1

‎05-10-2011 03:02 PM

Did Somebody already made it work?

0 Helpful

reiner.vossmann
Level 1
Level 1
In response to Edgar Servin

‎09-20-2011 08:30 AM

in my case the tip from another tread helped me out. The tip was to set on the 2008 NPS in the Connection Policy the Rádius standart Attribut Framed MTU to less than 1400.

In my case that made the deal !

Reiner

0 Helpful

Edgar Servin
Level 1
Level 1
In response to reiner.vossmann

‎01-19-2012 03:43 PM

Hi Reiner,

You set the "mtu" less than 1400 and the Switch CE500 works with Windows 2008 NPS.

Is that correct?

Do you set the MTU on the switch or the server?

Regards.

Edgar

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card