Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
163
Views
0
Helpful
0
Replies

Dot1x authentication no longer works after 2960 stack reboot

Claude-Alain Elsig
Level 1
Level 1

‎05-10-2016 07:12 AM - edited ‎03-08-2019 05:41 AM

Hello, 

As describe in the title, after a reboot of a stack (2) of 2960 switchs, the dot1x authentication on access port isn't working.

The authentication is still working on other switch.

Find the configuration below:

aaa new-model


aaa authentication login default local
aaa authentication dot1x default group radius
aaa authorization exec default local
aaa authorization network default group radius


aaa session-id common
clock timezone CET 1 0
clock summer-time CET recurring last Sun Mar 1:00 last Sun Oct 1:00
switch 1 provision ws-c2960s-24ts-l
switch 2 provision ws-c2960s-24ts-l
authentication mac-move permit

dot1x system-auth-control

interface GigabitEthernet2/0/5
description test
switchport mode access
shutdown
authentication event fail retry 0 action authorize vlan 2
authentication event no-response action authorize vlan 2
authentication port-control auto
dot1x pae authenticator
spanning-tree portfast
spanning-tree bpduguard enable

radius-server dead-criteria time 30 tries 2
radius-server host 192.168.104.2 key 7 xxx
radius-server retransmit 1
radius-server deadtime 1

Can anyone help me?

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card