Now I do mac authentication on A4: if client mac is valid,A4 allow it to access
the network. If not, A4 deny it.My working:
1.Set this port to vlan X and untag for it. I need not dynamical vlan for get a
vlan id from radius.
2.Enable mac authentication globally and enable on port.
3.Enable multi authentication globally and set the port connected radius server
to forced-auth
4.Enable radius and set radius server ip and secret key.
Now I find the client can access the network even though this client mac
authentication is failed. Show macauthen port is enable.But show macauthen
session is null. It is look like the mac authentication is not working. But
radius server logs show the client has done authentication and failed. Why?
I have another two questions:
1.If I only do mac authen not do 802.1x authen, must I enable dot1x and EAP?
2.What is the format of MAC in radius server defined for userid? Is it
1234ABCD? 12-34-AB-CD? 12:34:AB:CD? or others?
---
To unsubscribe from enterasys, send email to [email protected] with the body:
unsubscribe enterasys [email protected]
