Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
531
Views
5
Helpful
2
Replies

authenticate supplicant switch

Go to solution
vlad09
Level 1
Level 1

‎09-17-2018 03:02 AM - edited ‎03-08-2019 04:10 PM

Hi there!

I try to authenticate supplicant switch against authenticator switch, but I dont clearly undertand of this concept. Can u pls help me or guid me how to set-up supplicant switch authentication? I dont undertand against WHAT it does do the authentication. Because I created profile, configured eap method on supplicant SW and what more? There was nothing mentioned to configure any cred profile on authentication switch neither RADIUS. So my question is, against what does the supplicant switch do the authentication? (I only found that supplicant SW authenticate itself against authenticator, but...how?)

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
pieterh
VIP
VIP

‎09-17-2018 05:45 AM

are you following some document like this ?

NEAT Configuration Example with Cisco Identity Services Engine

 

in DOT1x you have the authenticator and the authentication server

the authentication server verifies the credentials

the authenticator receives requests from the connected device with a DOT1x supplicant and forwards this to the authentication server

the supplicant switch behaves the same as the DOT1x supplicant on a client PC.

so it passes credentials using DOT1x to the authentication switch, which passes the request using Radius to the authentication server. the request is validated etc. etc.

 

so basically the supplicant switch needs to pass an account (username and password) to "login" into the connected switchport, where the account is validated at the authentication server (AD, ISE, ACS etc).

View solution in original post

2 Replies 2

Go to solution
pieterh
VIP
VIP

‎09-17-2018 05:45 AM

are you following some document like this ?

NEAT Configuration Example with Cisco Identity Services Engine

 

in DOT1x you have the authenticator and the authentication server

the authentication server verifies the credentials

the authenticator receives requests from the connected device with a DOT1x supplicant and forwards this to the authentication server

the supplicant switch behaves the same as the DOT1x supplicant on a client PC.

so it passes credentials using DOT1x to the authentication switch, which passes the request using Radius to the authentication server. the request is validated etc. etc.

 

so basically the supplicant switch needs to pass an account (username and password) to "login" into the connected switchport, where the account is validated at the authentication server (AD, ISE, ACS etc).

Go to solution
vlad09
Level 1
Level 1
In response to pieterh

‎09-17-2018 10:37 PM

thank you very much, u showed my the right way!! Now its working like a charm

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card