Security

Reply
Occasional Contributor II

Lexmark Printer passes MAC auth but is not reachable on the LAN?

We have a Lexmark printer that is passing MAC authentication and being assigned the correct VLAN. It is even pulling DHCP. But I'm not able to ping the device, and it doesn't show up in my arp table on my Cisco switch. If I remove the NAC config, the printer works just fine. I'm not sure why CPPM is causing this issue even though it's successfully authenticating? 

 

 

Guru Elite

Re: Lexmark Printer passes MAC auth but is not reachable on the LAN?

ClearPass is not inline in the datapath so it's there's something going on with the switch.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: Lexmark Printer passes MAC auth but is not reachable on the LAN?

But why would it be this one port on this one switch? There are two devices conencted to this port, both printers, printer one is fine the entire time, but this Lexmark printer will never communicate. 

 

This is the relevant config on the port. Same as I have on thousands of other ports. 

 

authentication host-mode multi-auth
authentication order dot1x mab
authentication priority dot1x mab
authentication port-control auto
authentication periodic
authentication timer reauthenticate server
mab
dot1x pae authenticator
dot1x timeout server-timeout 10
dot1x timeout tx-period 3

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: