--On Friday, July 28, 2006 02:36:42 -0700 Thai Duong <[EMAIL PROTECTED]>
wrote:
--- James J J Hooper <[EMAIL PROTECTED]> wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
<http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1
x/cisco.html>
... as Josh said - pay particular attention to the
dot1x & radius server
timeout settings - we found the cisco defaults be be
generally broken.
Regards,
James
More about the debug log on the switch: I just got
something like this:
06:15:31: RADIUS: Initial Transmit FastEthernet0/2 id
33 192.168.22.180:1812, Access-Request, len 212
06:15:31: Attribute 4 6 C0A81617
06:15:31: Attribute 5 6 0000C352
06:15:31: Attribute 26 23 0000000902114661
06:15:31: Attribute 61 6 0000000F
06:15:31: Attribute 1 8 74686169
06:15:31: Attribute 31 19 30302D30
06:15:31: Attribute 6 6 00000002
06:15:31: Attribute 24 18 698927AB
06:15:31: Attribute 79 82 02710050
06:15:31: Attribute 80 18 DC8C131A
06:15:31: RADIUS: Received from id 33
192.168.22.180:1812, Access-Challenge, len 1100
06:15:31: Attribute 79 255 0172040A
06:15:31: Attribute 79 255 30373237
06:15:31: Attribute 79 255 0421C4B1
06:15:31: Attribute 79 255 092A8648
06:15:31: Attribute 79 24 6F6F7420
06:15:31: Attribute 80 18 BD53CEE9
06:15:31: Attribute 24 18 C35A3205
That's it. A access-request followed by a
access-challenge. Nothing more. Please help.
Could you post a 'show run' of your switch please. (obfuscate any passwords
or secrets)
Regards,
James
--
James J J Hooper,
Information Services
University of Bristol
--
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
