12-03-2019 07:34 AM
Hi all,
I configured my SDA network and configured Closed Auth as authentication template in the onboarding pool.
When i connect an endpoint to the FE switch it seems it is not configured for dot1x by default while if i explicity configure the port (assign) for closed auth the endpoint can authenticate via dot1x.
default port configuration follow:
Cat3850_2-172-16-66-68#sh run int gi 1/0/1
Building configuration...
Current configuration : 81 bytes
!
interface GigabitEthernet1/0/1
device-tracking attach-policy IPDT_MAX_10
end
Cat3850_2-172-16-66-68#sh dot1x all
Sysauthcontrol Enabled
Dot1x Protocol Version 3
Dot1x Info for GigabitEthernet1/0/11
--------------------------------------------
PAE = AUTHENTICATOR
QuietPeriod = 60
ServerTimeout = 0
SuppTimeout = 30
ReAuthMax = 3
MaxReq = 2
TxPeriod = 7
is this a normal behaviour?I thought that every interface should be automatically configured via default auth template.
Solved! Go to Solution.
12-03-2019 08:17 AM
12-03-2019 08:17 AM
12-03-2019 08:39 AM
Thanks Mike,
the FE was configured as Distribution and not as access. changing the role and reconfiuring it in sda has resolved the issue.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide