Wireless Access

Reply
Frequent Contributor I
Posts: 76
Registered: ‎11-23-2010

802.1x or MAC authentication at same SSID

Is it possible to configure one SSID with two type of authentication? 

We need 802.1x (EAP-TLS) or MAC authentication at the same SSID, is it possible to configure at 3400 controller without ClearPass?

Guru Elite
Posts: 21,269
Registered: ‎03-29-2007

Re: 802.1x or MAC authentication at same SSID

If you configure an SSID with 802.1x, it cannot support another device that is not configured for 802.1x. 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Valued Contributor II
Posts: 804
Registered: ‎12-01-2014

Re: 802.1x or MAC authentication at same SSID

Hi,

 

If you enable both MAC auth and dot1x on the same SSID, it works as follows,

1. always MAC auth first then dot1x

2. If MAC auth success and dot1x failed, user will get MAC default role

3. If MAC auth success and dot1x success, user will get dot1x default role ( or SDR/VSA role)

 

If you are looking for something similar, you can enable both on the same SSID.

 

Please feel free for any further help on this.

Cheers,
Venu Puduchery,
[Is my post helped you ? Give Kudos :) ]
MVP
Posts: 777
Registered: ‎03-25-2009

Re: 802.1x or MAC authentication at same SSID

The kicker: the dot1x failing here means wrong password or something similar. Not a non-supplicant (dot1x) client!  Right?

So not a solution for zemarcios situation.

 

 

Koen (ACMX #351 | ACDX #547 | ACCP)

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.
Search Airheads
Showing results for 
Search instead for 
Did you mean: