Wireless Access

last person joined: 3 hours ago 

Access network design for branch, remote, outdoor and campus locations with Aruba access points, and mobility controllers.
Expand all | Collapse all

Rap VBN 802.1x on switch connected to Ethernet port

  • 1.  Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 06, 2014 11:52 AM

    Hi,

     

    Can we connect a switch to Rap wired port and have 802.1x authentication on swicth wired ports for users?

    Old VBN VRD states we cant have802.1x on L2 switch  connected to RAP wired port .

    What kind of switch is required for this purpose ? 

     

    -harshad



  • 2.  RE: Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 06, 2014 04:24 PM

    This should work.  Any switch that does 802.1x would be supported.  The RAP is simply an uplink to that L2 switch.



  • 3.  RE: Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 07, 2014 01:19 PM

     

    Yep It should work..but the old VBN_VRD states that we can not have L2 switch in front of RAP if we are using 802.1x authentication.... has anyone tested with L2, L3 switch or aruba switches ??

     

    rap.jpeg



  • 4.  RE: Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 07, 2014 01:29 PM

    Harshad,

    The issue with a switch in front of a RAP port but having the RAP handle 802.1x is that the switch may not pass the EAP packets through to the RAP. Un-managed switches probably don't have this issue but if your switch has any intelligence, it will probably intercept the EAP packets.

     

    Best regards,

     

    Madani



  • 5.  RE: Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 07, 2014 01:48 PM

    Thanks Madani

     

    If i understood it correctly L2 switch  will not work but for unmanaged switch also I need to check it first..

     

    -Harshad.



  • 6.  RE: Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 07, 2014 01:55 PM

    Harshad,
    It all depends if the switch (managed or unmanaged) intercepts EAP frames. Any switch that has native 802.1x support will most likely intercept the EAP frames. Unmanaged switches typically don't have support for 802.1x so they blindly pass the frames along. Again no guarantee until you test it, this is not an issue on the RAP but whether the RAP will get the EAP frames.


    Best regards,

     

    Madani



  • 7.  RE: Rap VBN 802.1x on switch connected to Ethernet port

    Posted Mar 07, 2014 02:13 PM

    Great..Thanks for the reply...