Hi.

Have a problem with a third Party phone(LLDP). The Phone sometimes gets a timeout.

We have both 802.1x and MAB, to auth devices. The clue is to have MAB first in order, and priority, so that all third party phones auth with the first 6 digits in their MAC. All other devices must auth via 802.1x, after they fail MAB. This works fine, we connect the phone and wait for it auth, then we connect a computer with 802.1x cert. The computer connects to the Phone, witch then is connected to the switch. SO if u connect the phone(let it auth), then connect the computer, it works fine. BUT HERE IS THE PROBLEM: If u connect the phone to the switch, with the computer already connected in the phone, the computer will get authenticated first using 802.1x, before the phone get's authenticated with MAB. They both authenticate, but after a short while "NEW LL MAC phone-mac" is shown in the a debug-message, and the phone get's "ignored". In show mac address-table, the phone is changed to port "drop", and after a while it dissapears, and no contact can be made with the phone. Although, if we look in show authentication sessions or show mab ..., the phone seems to be authenticated. We can't understand what goes wrong here. (If both devices uses 802.1x (eap-md5 on the phone), everything works, but we want MAB on the phones.)

Cheeers