Campus Switching and Routing

Reply
Regular Contributor II
Posts: 226
Registered: ‎10-29-2014

Wired 802.1x issue with MAS s3500 24p

[ Edited ]

<EDIT>  issue resolved, it was a NIC issue :(smileyangry

 

 

I have enabled 802.1x in switch but when the I'm connecting a machine its not prompting for credential and the user is also gettin IP address after some time.. I also made that port as untrusted.

Here is the some log ..

 

(ArubaS3500-24P) #show log user-debug all

May 14 08:56:44 :522010: <NOTI> |authmgr| MAC=38:63:bb:df:2c:74 IP=192.168.29.30 User deauthenticated: name=, cause=Link down
May 14 08:56:44 :522049: <INFO> |authmgr| MAC=38:63:bb:df:2c:74,IP=192.168.29.30 User role updated, existing Role=logon/logon, new Role=logon/logon, reason=User de-authenticated with no role, used default role
May 14 08:56:44 :522050: <INFO> |authmgr| MAC=38:63:bb:df:2c:74,IP=192.168.29.30 User data downloaded to datapath, new Role=logon/1, bw Contract=0/0,reason=Download driven by user role setting
May 14 08:56:44 :522005: <INFO> |authmgr| MAC=38:63:bb:df:2c:74 IP=192.168.29.30 User entry deleted: reason=Link down
May 14 08:56:44 :522050: <INFO> |authmgr| MAC=38:63:bb:df:2c:74,IP=N/A User data downloaded to datapath, new Role=logon/1, bw Contract=0/0,reason=Station resetting role
May 14 08:57:08 :522035: <INFO> |authmgr| MAC=38:63:bb:df:2c:74 Station UP: BSSID=01:80:c2:00:00:03 ESSID=n/a VLAN=1 AP-name=
May 14 08:57:08 :522050: <INFO> |authmgr| MAC=38:63:bb:df:2c:74,IP=N/A User data downloaded to datapath, new Role=logon/1, bw Contract=0/0,reason=layer 2 event driven download from handle_sta_up_dn
May 14 08:57:08 :522026: <INFO> |authmgr| MAC=38:63:bb:df:2c:74 IP=192.168.29.30 User miss: ingress=0x2004, VLAN=1
May 14 08:57:08 :522049: <INFO> |authmgr| MAC=38:63:bb:df:2c:74,IP=192.168.29.30 User role updated, existing Role=logon/none, new Role=logon/logon, reason=First IP user created: from own existing l2 role

 

May 14 08:57:08 station-up * 38:63:bb:df:2c:74 01:80:c2:00:00:03 - - open system
May 14 08:57:08 station-up * 38:63:bb:df:2c:74 01:80:c2:00:00:03 - - wired station
May 14 08:57:08 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 1 5
May 14 08:57:38 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 1 5
May 14 08:58:08 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 1 5
May 14 08:58:38 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 2 5
May 14 08:59:08 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 2 5
May 14 08:59:38 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 2 5
May 14 09:00:08 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 3 5
May 14 09:01:00 station-up * 38:63:bb:df:2c:74 01:80:c2:00:00:03 - - open system
May 14 09:01:00 station-up * 38:63:bb:df:2c:74 01:80:c2:00:00:03 - - wired station
May 14 09:01:00 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 1 5
May 14 09:01:30 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 1 5
May 14 09:02:00 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 1 5
May 14 09:02:30 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 2 5
May 14 09:03:00 eap-id-req <- 38:63:bb:df:2c:74 01:80:c2:00:00:03 2 5

 

 

(ArubaS3500-24P) #show dot1x counters

802.1x Counters

Station
Unknown........................3
EAP
RX Pkts........................3
TX Pkts........................33

 

 

Valued Contributor II
Posts: 804
Registered: ‎12-01-2014

Re: Wired 802.1x issue with MAS s3500 24p

Hi Suman,

 

I see you after a long time :)

Issue could be the windows services. once you start the services you should be able to select dot1x authentication on that NIC. here are the steps,

1. Start "Wired Auto Config service" on your host (by running services.msc)

 

dot1x1.png

2. Now shoud be able to see the authentication option in the properties window of the NIC, select the "Enable IEEE 802.1x authentication " option and dont forget to select the proper EAP type :(.

dot1x2.png

 

Please feel free if you don't the solution.

Cheers,
Venu Puduchery,
[Is my post helped you ? Give Kudos :) ]
Search Airheads
Showing results for 
Search instead for 
Did you mean: