Security

Reply
Frequent Contributor I
Posts: 75
Registered: ‎07-03-2013

I am facing a problem for MAC BASED AUTHENTICATION

 

I am unable to authenticate my lap using mac base authenticationn. Although i have followed the proper steps as mentioned on here as well as on aruba Aruba 6.0 user guide.

 

Step 1: Default role on Wilress lan wizard is LOGON.

Step2: L2 athentication profile has been made . Snapshot 11.jpg

step3: AAA profile with initial role LOGON, Default role GUEST and LOGON for 802.1x . Snapshot 22.jpg

step4: internal DB i have provided the laptop MAC address but still it gives me error ( windows is unable to connect to Test-SSID) snasphot 33.jpg

MVP
Posts: 226
Registered: ‎03-03-2011

Re: I am facing a problem for MAC BASED AUTHENTICATION

In the screenshots provided you have set the case to 'lower' in the MAC auth profile but entered the MAC address in upper case in the internal db. If you change these values to match then it should work.

 

David

David
ACDX #98 | ACMP | ACCP
Frequent Contributor I
Posts: 75
Registered: ‎07-03-2013

Re: I am facing a problem for MAC BASED AUTHENTICATION

Thanx dear,

 

 

but what is the purpose of L2 authentication Fail through ?

 

 

Frequent Contributor I
Posts: 75
Registered: ‎07-03-2013

Re: I am facing a problem for MAC BASED AUTHENTICATION

however lower case is  selected and i enabled the L2 authentication fail through feature, mac based authentication is working,

 

but now i select the upper case and disable the L2 authentication fail through feature, mac based authentication is not working,

 

again enable the L2 authentication fail through mac base authentication is workfing now...

 

 

my question is that what is the prupose of L2 authentication fail through ?

MVP
Posts: 226
Registered: ‎03-03-2011

Re: I am facing a problem for MAC BASED AUTHENTICATION

L2 fail through means that if an authentication method fails (i.e. MAC or 802.1x) then it will continue trying to authenticate via other L2 methods. This allows for MAC based authentication and if this fails going to 802.1x.

 

If you just want to authenticate with MAC address you do not need to enable L2 fail through. Just ensure the MAC addresses are entered in the internal db the same as defined in the MAC auth profile.

David
ACDX #98 | ACMP | ACCP
Frequent Contributor I
Posts: 75
Registered: ‎07-03-2013

Re: I am facing a problem for MAC BASED AUTHENTICATION

Dear,

 

I want only mac based authentication.

 

Now i select the upper case for MAC address, and uncheck the L2 authentication fail through option. now  mac based authentication is not worrking...

 

there is no option in the MAC authentication profile to enter the MAC address. however i entered the MAC address (upper case ) in the internal database...

 

 what can i do now ?

Frequent Contributor I
Posts: 75
Registered: ‎07-03-2013

Re: I am facing a problem for MAC BASED AUTHENTICATION

Can u take the remote session of my laptop ?

Super Contributor II
Posts: 354
Registered: ‎09-26-2012

Re: I am facing a problem for MAC BASED AUTHENTICATION

Make sure that the internal db is added as authenticated server in authentication server group
Thanks & Regards
Syed Murad Ali
ACMP ACMA CCNA
Search Airheads
Showing results for 
Search instead for 
Did you mean: