Re: 802.1x debug not working

s.clinard · ‎09-22-2009

I'm trying to get 802.1x on a Cat6509-E to work with Microsoft IAS. I'm still working through the details, however when I issue 'debug dot1x all' and then issue a 'term mon' command, I never see any dot1x debug information.

DET1TR1E#sh deb

dot1x:

Dot1x registry info debugging is on

Dot1x redundancy info debugging is on

Dot1x packet info debugging is on

Dot1x events debugging is on

Dot1x State machine transitions and actions debugging is on

Dot1x Errors debugging is on

Here is the global dot1x config:

aaa authentication dot1x default group radius

aaa authorization network default group radius

dot1x system-auth-control

dot1x guest-vlan supplicant

here is the interface dot1x config:

dot1x pae authenticator

dot1x port-control auto

dot1x guest-vlan 900

dot1x auth-fail vlan 900

This used to work at one time. I have no idea why it doesn't show any transactions in the terminal window.

Any help is appreciated.

Shane

simontibbitts · ‎09-22-2009

Hi Shane.

I just thought I would check that debugging messages are allowed to be sent to the console? A 'show logging' will show whether debugs are allowed to the console or not.

A lot of the time engineers turn off console logging and log to buffer in order to lower the impact of debugging. Most of the time they forget to turn it back on afterwards!

Just wanted to check this wasn't the case.

Simon

s.clinard · ‎10-07-2009

Hi Simon - this doesn't seem to be the case. I am SSH'd to the switch and verified that logging monitor is set to informational. This should send debugging and informational messages to the monitor session (in my case vty3).

Thanks,

Shane

Georg Pauwen · ‎09-21-2020

Hello,

turn on:

debug dot1x all

and post the output.

andrew.butterworth · ‎09-22-2020

Terminal monitor...