Skip to main content
Start a Conversation

Unsolved

This post is more than 5 years old

jerbra

2 Posts

1647

August 10th, 2016 09:00

dynamic VLAN assigemnet 802X PowerConnect 6248P version:3.3.12.1

Dynamic VLAN assigemnet 802X does not work with nps.

on port 1/G17 i would like to use dynamic VLAN assigemnet.

We have nps server.

Radius client is done

Also connection request policies

and network policies.

I have the following configuration on my switch.

I would like to know if i missed something in this config.?

The config of the switch is.


!Current Configuration:
!System Description "PowerConnect 6248P, 3.3.12.1, VxWorks 6.5"
!System Software Version 3.3.12.1
!Cut-through mode is configured as disabled
!
configure
vlan database
vlan 2-9,25,30,201-204,298-299,1000
exit

clock timezone 2 minutes 0 zone "CET"
stack
member 1 5
exit

ip address 10.130.254.4 255.255.255.0


ip default-gateway 10.130.254.3
ip address vlan 25
logging
description ""
level notice
exit
interface vlan 4
name ""
exit
interface vlan 5
name ""
exit
interface vlan 6
name ""
exit
interface vlan 7
name ""
exit
interface vlan 8
name ""
exit


interface vlan 9
name ""
exit
interface vlan 25
name ""
exit
interface vlan 30
name ""
exit
interface vlan 201
name ""
exit
interface vlan 202
name ""
exit
interface vlan 203
name ""
exit
interface vlan 204
name ""
exit


interface vlan 298
name ""
exit
interface vlan 299
name ""
exit

dot1x system-auth-control
aaa authentication dot1x default radius
aaa authorization network default radius
radius-server host auth 10.130.12.99
name "Default-RADIUS-Server"
key "******************************"
exit
line console

exit
line telnet

exit
line ssh


password encrypted
exit
!

!
interface ethernet 1/g17
spanning-tree portfast
switchport mode general
dot1x port-control force-authorized
exit
!

jerbra

2 Posts

August 11th, 2016 09:00

Hello authenticate of de windows radius server works now.

When te port is set on Dot1x port-control auto

When i set on interfase 1/G17 dot1x port-control auto i can authenticate.

We have nps Radius windows 2008.

next question i have on the interfase you can set unauth-vlan and guest-vlan

when i setup guest computer with no 802.X authentication i would like the computer to connect to guest-vlan

on the switch you can set on port 1/G17 with the command dot1x guest-vlan to the guest vlan but that does not work how can set this up?

thanks.

 

Was this post helpful?

View All

No Events found!

Top