Wireless (General)

Expand all | Collapse all

NAC doesn't accept RADIUS requests from Summits

  • 1.  NAC doesn't accept RADIUS requests from Summits

    Posted 05-30-2017 10:34
    Hello, everybody,

    I want to setup MAC-based auth on Summits using NAC as RADIUS for Identity-Management purposes.

    Summit sends requests to NAC, NAC receives them, but denies. I suppose, that the summit is not set as Radius client in NAC.

    What I have on the Summit:

    # Module netLogin configuration.
    #
    configure netlogin vlan NTLG
    configure netlogin add mac-list ff:ff:ff:ff:ff:ff 48
    enable netlogin ports 1-44 dot1x
    enable netlogin ports 1-44 mac
    configure netlogin ports 1 mode mac-based-vlans
    configure netlogin ports 1 no-restart

    configure radius netlogin primary server 192.168.13.251 1812 client-ip 192.168.13.5 vr VR-Default
    configure radius netlogin primary shared-secret encrypted "#$OQazk8Nl5IHctghlB3infcpFFq9JBiFSRoujfikB"
    enable radius netlogin

    What I get on Summit after "enable netlogin dot1x mac" command:

    05/30/2017 15:24:57.11


  • 2.  RE: NAC doesn't accept RADIUS requests from Summits

    Posted 05-30-2017 10:40
    Hello,

    You have to add the switch into the NAC switches tab and enforce in order for NAC to see the switch as an authorized source.
    https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-Add-Switches-to-NAC-Appliance-Group

    Thanks
    -Ryan



  • 3.  RE: NAC doesn't accept RADIUS requests from Summits

    Posted 05-30-2017 12:28
    Thanks, Ryan!

    This did solve the issue. At last, I got Device Type and OS data into the Netsight.