Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I would like to integrate RSA SecurID to our current setup as a second factor authentication. I can authenticate with AD and RSA individually but not on the same authentication sequence.The scenario include the Anyconnect VPN where the user is ...
Hello,
I have a problem where the switch will try to authenticate a device with MAB and it will never fail or timeout.
Here is the situation: where a device has 802.1x authentication enabled but not it has invalid parameters (or missing certificate)....
Hello,
I'm deploying dot1x in the office and I'm having little difficulty with enabling both dot1x with mab and then fail over to the guest vlan.
A simple scenario where an end user device cannot provide authentication, I want the switch to automatic...
Hello David,I added the requested output in the attachment. I don't know where to look as I see two requests going to ACS but requests AD authentication only.Thanks,Olivier
Hello Neno,
We use ACS 5.4 for Radius. I don't receive any status on the Radius reports for dot1x authentication. I will receive a fail status when it does not find any matching MAC address in the Internal store.
Here is the output after 10 mins for ...
Hello guys,
Thank you for your replies but the switch will still 'hang' on MAB with the following configuration:
interface FastEthernet0/16
switchport access vlan 155
switchport mode access
authentication event fail action next-method
authenti...
I found a solution where 'event fail action next-method' would likely trigger the next authentication method without failing over. I also removed the priority and order commands as the switch will process on the intended order.
Here is the result:
...
