Extreme Networks

JohanHendrikx · ‎08-01-2019

In my test environment I have a switch (X440G2 22.7.1.2) configured for NAC with two radius servers.

In the AAA configuration I see two netlogin radius entry’s and the radius mgmt.-access is disabled and the policy works fine.

As expansion on the configuration I want also that management requests are done by the radius servers.
So I configure the same radius server as for authentication .

Now I see in the AAA configuration that the netlogin rules are replaced by mgmt.-access rules and that the radius netlogin is disabled.

Cann’t I use the same radius servers for mgmt. as for authentication?

Johan Hendrik System Architect Audax

JohanHendrikx · ‎08-06-2019

Ryan,

I will test it

Johan Hendrik System Architect Audax

View solution in original post

Ryan_Yacobucci · ‎08-05-2019

Hello Johan,

I'm not sure what you mean by config rules for netlogin.

Are you referring to XMC control rules that determine authorization levels?

Are you referring to switch configuration to enable netlogin for mac/802.1x auth on a per port or global basis?

Thanks
-Ryan

JohanHendrikx · ‎08-05-2019

When I change the auth Access type to any access, the only configuration rule are the radius mgmt-access rules .
radius mgmt-access and radius netlogin are enabled.
There are no config rules for netlogin.

Johan Hendrik System Architect Audax

Ryan_Yacobucci · ‎08-04-2019

Hello,

You can use the same RADIUS server fore mgmt and network authentication. You must set the Au

Make sure that the X440G2 is set to "Any Access":

Extreme Networks

NAC authentication and mgmt authentication with the same radius servers

NAC authentication and mgmt authentication with the same radius servers