01-25-2023 07:53 AM
I've installed Extreme Control and manually configure my Radius settings on the switch. I've found once I add the switch to NAC (but don't enforce) the engine pushes out a new Radius config to my VOSS switch. I don't have a problem with this BUT it erases the previous ssh/web authentication settings (radius server host 10.x.x.x key ******* used-by web/cli). How do I get the ssh/web authentication into the switch policy (or get it to append the new eapol settings to the existing)?
Thanks,
Tim
01-26-2023 05:56 AM
I'm not quite sure on the specifics of this interaction but I believe we issue the equivalent of "no radius server host x used-by eapol" followed by a "radius server host x key y used-by eapol enable". I would expect on VOSS that an existing line "used-by web" (or whatever its exact format is) would not be removed by the above "no" line. If it is, I would say that is unexpected / undesired behavior.
