Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all,I want to ask you experts some suggestion on how really work mechanism between Cisco switches and radius server when using dynamic vlan assignement and the radius suddenly will be unavailable.With server dead command under port configuration i...
Hi all, I have some doubts regarding the real behavoiur of Cisco IOS and IOS XE when a device that failed dot1x authentication is put in the fail vlan. From documentation I see that : Users who fail authentication remain in the restricted VLAN unti...
Hi all, I'm trying to configure ports on switches Catalyst 2960 , 2960X and 9200L using host-mode multi-auth but leaving also the fail vlan because we want to maintain a recovery method to guarantee access to devices also in case MAB and dot1x fail. ...
Hi all, I want to ask community for a suggestion regarding a potential problem noted on a stack of 2960x withCisco IP Phones and PCs connected behind phones Some customers informed us that, sporadically , the PC behind phone is not able to authentica...
Hi all,
I'm trying to investigate if vacl feature is officially supported on layer2-only 2960 lanbase switch like 2960-24-PC-L.
We have many switches actually running 12.2(55)SE1 or 12.2(55)SE5 version
Following configuration guide I'm able to se...
yes Aref I think so, this is why we are thinking to a solution updating regularly the access static vlan and the critical vlan with the value returned by RADIUS based on the profile of device connected.Also solution suggested by Arne to use IBNS 2.0 ...
Hi MHM,by test made , old devices remain in VLAN previously authorized static or dynamic also After session timeout expiration if It It remain connected even if server Is dead.If I disconnect cable or restart authentication then device Is put in the ...
Hi Arne,I'm looking more deeply to your last statement and matching with my last test i have a question for you The thing to remember is that normally, the only thing we tend to plug/unplug a lot on the wired network is workstations. We don't do the ...
