Dot1x on cisco 3560
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Fri Apr 25 09:51:36 CEST 2008
Hi,
> xxxx Cleartext-Password := "PPPPPl"
> Service-Type = NAS-Prompt-User,
> cisco-avpair = "shell:priv-lvl=15"
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
this sort of stuff it for admin access to the switch
> Sending Access-Challenge of id 60 to 172.29.11.1:21645
> Framed-IP-Address = 255.255.255.254
> Framed-MTU = 576
> Service-Type = Framed-User
> EAP-Message = 0x010300160410245db5b7205b11398ead15f567f6ed77
> Message-Authenticator = 0x00000000000000000000000000000000
> State = 0xb307e1b51eedc6cc895b65e64bcd34a3
> Finished request 0
> Going to the next request
> --- Walking the entire request list ---
> Waking up in 6 seconds...
> rad_recv: Access-Request packet from host 172.29.11.1:21645, id=60, length=123
> Sending duplicate reply to client authenticator-short-name:21645 - ID: 60
> Re-sending Access-Challenge of id 60 to 172.29.11.1:21645
lots of these. looks like FR is sending challenges but the switch is not
responding. whats your IOS config look like? if you 'debug aaa' on the switch
can you see stuff happening at all?
alan
More information about the Freeradius-Users
mailing list