Wireless Access

Reply
Contributor I
Posts: 48
Registered: ‎01-19-2011

Radius server failover in .1x

Anyone know if we terminate on the radius servers, does aruba allow failover of radius servers for dot1x?

 

Under the server group > AAA settings, we have two radius servers but it appears that it only ever talks to the first one even if it's down it doesn't attempt to talk to the second one.  The failthrough check mark is there but is only availble if we're terminating on the controller.

 

Any ideas?

 

Thank you!

Aruba
Posts: 1,644
Registered: ‎04-13-2009

Re: Radius server failover in .1x

If the first server listed in the group is not available, it should go to the second in that scenario.  fail through is not needed for that.   If you wanted fail through to work (go to the second even if the first is up and responding) then you need to terminate on the controller.

 

run the following from the CLI to see if it gives you any insight into whether it is trying to use the other server; and if it sees the other one as down.

 

show aaa authentication-server radius statistics

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Contributor I
Posts: 48
Registered: ‎01-19-2011

Re: Radius server failover in .1x

Thanks!  That command definitely showed both receiveing requests.  Thanks a bunch.

Search Airheads
Showing results for 
Search instead for 
Did you mean: