hi all, endpoints send mab request first with dot1x as user enter his credentials .so first they get registered and then get unreg state but no reauthentication prompt come .they get vlan ,have internet access but remain in unreg state. on node status
if i completely remove mab from configuration they work fine. i am using anyconnect profile with dot1x only .i don't understand why the sending mab request,is it because dot1x timeout quiet-period 2 dot1x timeout tx-period 3 Please help if i need to change something regarding that. i am using this port configuration switchport mode access switchport voice vlan xxx ip flow monitor SMC-flow-monitor input ip device tracking maximum 10 authentication host-mode multi-auth authentication order dot1x mab authentication priority dot1x mab authentication port-control auto authentication periodic authentication timer reauthenticate server authentication timer restart 10800 authentication violation replace mab no snmp trap link-status dot1x pae authenticator dot1x timeout quiet-period 2 dot1x timeout tx-period 3 spanning-tree portfast edge spanning-tree bpduguard enable end
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
