Wired Intelligent Edge

Please advice, anyone with working switches ?

From CX manual:

Specifies the CKN (Connectivity Association Key Name). Range: 1 to 64 hexadecimal characters

Specifies the CAK (Connectivity Association Key) in plaintext. Range: 1 to 64 hexadecimal characters.

AOS:

Enter the CKN as a string of hexadecimal digits up to 32 characters long

Enter the CAK as a string of hexadecimal digits up to 64 characters long

This mean that for the AOS the CAK limitation is 32 byte ascii/characters 

• Bee aware some other setting smay be accepted, during input.

ie, a 34 characters ascii CAK will be silent truncated....to 32 characters

ie.:

12345678901234567890123456789012

and

1234567890123456789012345678901234

will both work, in AOS >< CX MacSec (on AOS side)

as

12345678901234567890123456789012

on CX side will

• So: stay with CKN/CAK 32/32 ascii/characters. (digits and letters)

Hi Steinar,

I had the same problem.

Adjusting the key server priority solved it for me.

The AOS switch must be the key server.

In my case, the AOS had a priority of 16 (show port-access mka status)

(The default prio of the AOS-CX is 0)

So I gave the AOS-CX the maximum priority of 255 (key-server-priority 255 (on the mka policy context))

Best regards

Robin