1 Rookie
•
2 Posts
0
111
July 11th, 2024 18:40
dot1x Authentication Configuration using Radius Server
Hello Everyone,
Switch Model: N2000P
Firmware: 6.6.3.17
I am trying to configure dot1x authentication using the Cloud Radius server. The configuration I am applying is as below but the switch is not even sending request to the radius(Public IP).
Configuration:
1. Enter global configuration mode and define the RADIUS server.
console#configure
console(config)#radius-server host 10.10.10.10
console(config-auth-radius)#name BigRadius
console(config-auth-radius)#primary
console(config-auth-radius)#usage 802.1x
console(config-auth-radius)#exit
console(config)#radius-server key thatsyoursecret-keepitkeepit
3 Enable authentication and globally enable 802.1x client authentication via RADIUS:
console(config)#authentication enable
console(config)#aaa authentication dot1x default radius
console(config)#dot1x system-auth-control
4. Interface level 802.1x
console(config)#interface te1/0/4
console(config-if-Te1/0/4)#authentication port-control auto
console(config-if-Te1/0/4)#dot1x reauthentication
console(config-if-Te1/0/4)#dot1x timeout tx-period 5
console(config-if-Te1/0/4)#exit
Can anyone help me with some suggestions for the better configuration to be successful in it.
Thanks,
Kavya Sri
DELL-Joey C
Moderator
•
3.9K Posts
0
July 12th, 2024 03:04
Hi,
I spoke to one of the network expert and he mentioned that you might be missing some configuration.
On global client authentication (3):
after
Console(config)#dot1x system-auth-control
Console(config)#radius server source-ip X.X.X.X
Console(config)#radius server auth X.X.X.X
On interface Te1/0/4 (4)
interface Te1/0/4
dot1x reauthentication
dot1x timeout guest-vlan-period 10
dot1x max-req 10
dot1x guest-vlan X
dot1x unauth-vlan X
authentication order dot1x
authentication priority dot1x
exit
If this doesn't work, you may need to run a show tech to have us check the full logs.