Controllerless Networks

last person joined: yesterday 

Instant Mode - the controllerless Wi-Fi solution that's easy to set up, is loaded with security and smarts, and won't break your budget
Back to discussions
Expand all | Collapse all

802.1x and request to external Radius

This thread has been viewed 0 times

  • 1.  802.1x and request to external Radius

    Posted Apr 24, 2017 01:11 PM
    I only see one attempt (if for example the certificate is expired) to auth to the Radius server ... does Aruba cache the failed attempt?

    Even if I restart the computer ... I don't see a new Radius request.

    Is it by design?


  • 2.  RE: 802.1x and request to external Radius

    Posted Apr 24, 2017 01:36 PM
    The controller has a caches the session for 5 minutes so if you want to see the radius request you may need to run the following command : aaa user delete mac "device mac address"


  • 3.  RE: 802.1x and request to external Radius

    Posted Apr 30, 2017 09:35 PM

    Hi Michael,

     

    If the cert is expired on the client side, it will not respond with its identity itself.

     

    Please check the following output on controller for more information on radius authenticaiton:

     

    config# logging level debugging user-debug <mac-address of user>

       # show auth-tracebuf mac <mac-address of client >

     

    in case you are using IAP:

     

    #show ap debug auth-tracebuf <mac-address of client>