Network Login 802.1x user VLAN(s) "unknown" on 460 G2 switch with EAC

  • 0
  • 1
  • Question
  • Updated 9 months ago
  • Answered
  • (Edited)
Hi All

Does anyone know why my Radius authenticated users has an unknown VLAN in the switch logs? It does not happen this way on a G1.

Network Login 802.1x user host/justsomebloke logged in MAC F0:C7:19:5E:26:C9 port x:x VLAN(s) "<unknown>", authentication Radius

Thanks
Photo of Justsomebodi

Justsomebodi

  • 1,572 Points 1k badge 2x thumb

Posted 9 months ago

  • 0
  • 1
Photo of Ronald Dvorak

Ronald Dvorak, Embassador

  • 50,174 Points 50k badge 2x thumb
Because it's justsomebloke and not a real user...... or because the configuration is different on the devices.

Does the RADIUS provide the VLAN ID and if that is the case is the configuration on the RADIUS the same for both devices - same rule action - check the RADIUS log.
Photo of Justsomebodi

Justsomebodi

  • 1,572 Points 1k badge 2x thumb
It is the same radius server and the same EAC engine. The only difference is the switch type.
Photo of Justsomebodi

Justsomebodi

  • 1,572 Points 1k badge 2x thumb
Also it is a real user.
Photo of Ronald Dvorak

Ronald Dvorak, Embassador

  • 50,174 Points 50k badge 2x thumb
OK so Extreme Control is also included - how about the switch settings in Control - are they the same for the switches in the Policy/VLAN column...

Photo of Justsomebodi

Justsomebodi

  • 1,572 Points 1k badge 2x thumb
Yep Extreme Policy is set for both.
Photo of OscarK

OscarK, ESE

  • 7,912 Points 5k badge 2x thumb
If the vlan attribute is returned as a policy you will see unknown vlan in the switch log. As the switch only sees a policy being returned and not a Vlan VSA. the vlan is applied by policy and not by login.
Photo of Karthik Mohandoss

Karthik Mohandoss, Employee

  • 6,058 Points 5k badge 2x thumb