I am trying to configure 802.1x on my wireless router (877) but no luck. Here is a part of my config. Radius is on Small Business Server 2008
aaa new-model
aaa group server radius rad_eap
server 172.16.1.x auth-port 1812 acct-port 1813
aaa group server radius rad_acct
server 172.16.1.x auth-port 1812 acct-port 1813
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization ipmobile default group rad_pmip
aaa accounting network acct_methods start-stop group rad_acct
dot11 ssid xxxx
vlan x
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa'
mbssid guest-mode
radius-server host 172.16.1.x auth-port 1812 acct-port 1813 key xxxx
With this config above I go to my laptop and try to connect like to a normal wiif, I can see username/pass box. I type and it fails. But at least the router tries to go to Radius (I can see a lot of debug messages). On Radius it fails with 'IAS INVALID AUTH'. probably because the card is not set up with 802.1x
When I remove the line 'authentication key-management wpa' I am able to configure my wirless card with 802.1x but when I try to connect, my router does not contact with Radius at all (I know it as I turned on debug for radius and dot1x)