Dot1x on cisco 3560

A.L.M.Buxey at lboro.ac.uk A.L.M.Buxey at lboro.ac.uk
Fri Apr 25 09:15:23 CEST 2008


Hi,
> Hi i have problems again with authentication , i trying to use
> freeradius and cisco 802.1x.
> Windows said authentication error.
> This is my users file:
> 
> xxxx   Cleartext-Password := "PPPPPl"
>            Service-Type = NAS-Prompt-User,
>            cisco-avpair = "shell:priv-lvl=15"
> 
> yyy     User-Password == "KKKK"
> 
> DEFAULT Auth-Type := Reject

this is for users to log into the admin interface of
the switch - or are you trying to configure the switch
such that end users need to 802.1X to get a network via
a switchport access interface on the switch?

if its the former, then read the cisco 802.1X docs
to ensure your IOS is configured properly. dont quote
some random old 3rd party URL

if it the latter then clear text passwords dont work with PEAP
you need to use NT-hashes

alan



More information about the Freeradius-Users mailing list