This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

XIQ - How can I enable wired 802.1x port authentication

XIQ - How can I enable wired 802.1x port authentication

Go to solution
StephanH
Valued Contributor III

‎01-25-2021 10:08 PM

Hello,

how can I enable wired 802.1x authentication for an XIQ AP so that the AP authenticate on a switch port?

Regards Stephan
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
reinhardg
Contributor II

‎01-28-2021 12:10 PM

Hello Stephan,

yes, with the GUI of XIQ it is not possible to configure 802.1x.

With the CLI PEAP is the default. MD5, TLS and TTLS is also possible, i.e.: supplicant name_of_supplicant eap-type md5 (https://docs.aerohive.com/330000/docs/help/english/ng/Content/reference/docs/cli-reference-guides.ht...)

I’ve requested an according FR at my sales engineer some months ago, but didn’t get an answer, yet.

Our production env is still under HM Classic. We are testing XIQ so that we can decide whether to migrate or replace all that stuff with HW of a vendor that has better support (or should I say: Support at all?)

View solution in original post

0 Kudos
18 REPLIES 18

Go to solution
StephanH
Valued Contributor III

‎02-03-2021 03:56 PM

Ok, 

Reinhard. 802.1x with CLI works fine. Thank you for your help.

Regards Stephan
0 Kudos

Go to solution
CWurm
Contributor

‎02-02-2021 12:34 PM

Thank you very much! I haven’t seen this setting before ? This is very nice to know that you can also bind a supplemental CLI to each AP individually.

Can you combine both settings, i.e. have a supplemental CLI for the whole network policy and also one on the AP or can you only enable supplemental CLI in one place?

 

Kind regards

Christian

 

Edit: nevermind my question. I saw you can set to either combine both supplemental CLIs or use the device-level supplemental CLI setting as an override 🙂

0 Kudos

Go to solution
reinhardg
Contributor II

‎02-02-2021 09:53 AM

@CWurm With XIQ (on-prem) you can attach a supplemental CLI at network policy level (“Additional Settings” → “Policy Settings” → “Supplemental CLI”) as well as at AP level (“Device Configuration” → “Supplemental CLI”). Is this what you need?

0 Kudos

Go to solution
CWurm
Contributor

‎01-29-2021 04:50 PM

@reinhardg thank you for your hint! Good to see that it is possible to enable 802.1X via supplemental CLI commands on an AP. I will try this in my test lab in the next few days to verify if that works 🙂

 

However with supplemental CLI we can only push a single credential across all devices which might be sufficient for some customers but not for all. I think I will open up a feature request as well to have this option available in the CLI and to have it customizable for every single AP as well.

 

Kind regards

Christian

0 Kudos
GTM-P2G8KFN