Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
317
Views
0
Helpful
1
Replies

802.1x - Wired network

cisco123456
Level 1
Level 1

‎11-11-2004 09:13 AM - edited ‎03-09-2019 09:24 AM

I have been playing around with 802.1x in my lab. I have it working with 3550, ACS and Active Directory. I would like to enable 802.1x authentication on all ports in my environment. That presents a problem for devices that don't have a supplicant, like some print servers. If 802.1x is configured on a port and the device doesn't have a supplicant it gets placed into the guest VLAN. That is working as expected. However, I would like to be able to specify certain MAC addresses that should be allowed in the production VLAN (ie. print servers). Is there a way to accomplish this? I know I can use 802.1x with port security, but that still places the device in the guest VLAN. I have researched the forums and read most 802.1x documents on this site.

I am aware that the switch starts the authentication process when it sees link on the port. It would be nice if it didn't get a reply from a supplicant, that it would send the MAC address to the ACS server for verification.

Ideas?

Labels:
0 Helpful
1 Reply 1

jafrazie
Cisco Employee
Cisco Employee

‎11-11-2004 10:51 AM

This functionality is not available today.

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents