Wired

 View Only
last person joined: 23 hours ago 

EAP RESPONSE - Legacy NAK (Response only)

This thread has been viewed 8 times
  • 1.  EAP RESPONSE - Legacy NAK (Response only)

    EMPLOYEE
    Posted Nov 02, 2021 01:30 AM
    Order of desire authentication type plays important role for quicker onboarding process in dot1x environment!
    If connected dot1x supplicant is attempting eap-md5 and dot1x aaa server authentication type is EAP-TLS, then one cycle of EAP Request and EAP Response will be wasted. But in real deployment such cycle are expected as per the current protocol EAP standard!


          The legacy Nak Type is valid only in Response messages.  It is
          sent in reply to a Request where the desired authentication Type
          is unacceptable!

    Below capture confirm the same!


    Good day!

    ------------------------------
    Yash NN
    ------------------------------