Hello,
I back to the endcustomer today
We setup a dedicated network for the switch management 10.100.100.0/24
The switch is using 10.100.100.45 and learpass data port is setup with 10.100.100.1
The config switch is :
LABO_CLEARPASS# sh run
Running configuration:
; JL356A Configuration Editor; Created on release #YC.16.10.0003
; Ver #14:27.44.38.04.99.03.b3.b8.ef.74.61.fc.68.f3.8c.fc.e3.ff.37.2f:33
hostname "LABO_CLEARPASS"
module 1 type jl356a
radius-server host 10.100.100.1 key "Azerty123"
radius-server host 10.100.100.1 dyn-authorization
timesync sntp
sntp unicast
sntp server priority 1 134.59.1.5
time daylight-time-rule western-europe
time timezone 60
ip default-gateway 172.17.66.254
snmp-server community "public" unrestricted
aaa server-group radius "clearpass" host 10.100.100.1
aaa authentication rest login radius
aaa authentication rest enable radius
aaa port-access authenticator 23-24
aaa port-access authenticator 23 auth-vid 1
aaa port-access authenticator 23 unauth-vid 3
aaa port-access authenticator 23 client-limit 3
aaa port-access authenticator 24 auth-vid 1
aaa port-access authenticator 24 unauth-vid 3
aaa port-access authenticator 24 client-limit 3
aaa port-access authenticator active
vlan 1
name "DEFAULT_VLAN"
untagged 1-28
ip address 172.17.64.45 255.255.0.0
ipv6 enable
ipv6 address dhcp full
exit
vlan 3
name "Poubelle"
no ip address
exit
vlan 500
name "MGNT-SWITCH"
tagged 2
ip address 10.100.100.45 255.255.255.0
exit
LABO_CLEARPASS#
Nothing in the Access Traker, but I think I have a problem with the switch configuration because I see only that :
ABO_CLEARPASS# sh radius authentication
Status and Counters - RADIUS Authentication Information
NAS Identifier : LABO_CLEARPASS
Invalid Server Addresses : 0
UDP
Server IP Addr Port Timeouts Requests Challenges Accepts Rejects
--------------- ----- ---------- ---------- ---------- ---------- ----------
10.100.100.1 1812 0 0 0 0 0
Michel