Wednesday, September 15, 2021

Wired 802.1x and MAC authentication

Hello,

Regarding wired authentication:

If a port is configured to perform parallel 802.1x and MAC authentication and the client successfully authenticates via its MAC address should the switch continue to send EAP Request ID packets? I am seeing the switch continuously send these packets to ports that have already successfully authenticated a MAC client.

Here is a snip from the switch debug log:

0000:15:26:57.47 1X m8021xCtrl:Port 45: sent ReqId #1 to 0180c2-000003.

0000:15:27:27.47 1X m8021xCtrl:Port 45: sent ReqId #2 to 0180c2-000003.

0000:15:27:57.47 1X m8021xCtrl:Port 45: sent ReqId #2 to 0180c2-000003.

0000:15:28:27.47 1X m8021xCtrl:Port 45: sent ReqId #3 to 0180c2-000003.

0000:15:28:57.47 1X m8021xCtrl:Port 45: sent ReqId #3 to 0180c2-000003.

I am unsure if this is normal behaviour.

Thank you.



at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)