Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am in the middle of migrating WLC 5520 (8.10.190.0) to C9800-CL (17.12.05) while APs remain the same (3802i). AAA servers are ISE 3.4 patch 2. We use centralized switching (no Flex mode). I have an 802.1X SSID allowing both EAP-TLS and PEAP+MSCHAPv...
We treat our BYOD users the same as Guest (not a BYOD flow). Instead of authenticating againt Guest Users, it uses AD crendentials then allows Internet access only. It's been working until recently. On iPad/iPhone with iOS 13.x/14.x, the "Cancel" but...
Currently I have a single fiber connection connecting two organizations/networks using VLAN interface (SVI) and static routing. Switchs involved happen to be Nexus switches from both organizations. Two networks are independant and have their own Inte...
Well, that's the only logical explanation so far. However, the "bad" laptop joins the 802.1X SSID on 5520 without any issues. As I said, I tested 5 laptops so far and found one "bad". I am about to migrate from 5520 to C9800-CL shortly and we have ab...
On the WLC, you only configure the SSID to use 802.1X. What exactly EAP type or method to use is configured on ISE. On my ISE both EAP-TLS and PEAP + MSCHAPv2 are allowed (also tried PEAP + EAP-TLS). I've configured the bad laptop to use both methods...
