This topic has been marked solved and closed to new posts due to inactivity. We hope you'll join the conversation by posting to an open topic or starting a new one.
Port Based Authentication Mode Enable => management web console lost
Hello,
I configure a NPS, Radius Server on Windows Server which is configured to return Tunnel Attributes :
Tunnel-Medium-Type : 802
Tunnel-Type. Select Virtual LANs (VLAN).
Tunnel-Pvt-Group-ID : 1 (my management VLAN ID for test purpose)
on receiving mac address from my switch. I am only using Mac Auth. My goal is to attribute a VLAN ( Tunnel-Pvt-Group-ID ) from Radius when my switch send a mac address from supplicant.
Everything is fine until I select 802.1X Configuration => Port Based Authentication State to Enable.
I loose all access to the switch (web management console) and need to factory reset each time.
Is there a way to configure the admin port to Authorized state to avoid being disconnected by (802.1X port based authentication state)? Something like Authorized state forever for admin port on the switch.
Be careful, by default all ports's mode is 'Auto', that's mean all ports need to do 802.1x authentication once you enable 802.1x on global. So suggest you go to 802.1x port config page, only leave the ports that you want to do 802.1x authentication stay on 'Auto', for all other ports(uplink port, server port, or you said Admin port...) select to 'Force Authorized' mode, that's mean these ports will ignore the 802.1x process. Then enable 802.1x global.
Be careful, by default all ports's mode is 'Auto', that's mean all ports need to do 802.1x authentication once you enable 802.1x on global. So suggest you go to 802.1x port config page, only leave the ports that you want to do 802.1x authentication stay on 'Auto', for all other ports(uplink port, server port, or you said Admin port...) select to 'Force Authorized' mode, that's mean these ports will ignore the 802.1x process. Then enable 802.1x global.
