This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

netlogin: upm profile for checking windows services

netlogin: upm profile for checking windows services

EtherNation_Use
Contributor II

‎01-07-2014 09:49 PM

Create Date: Jun 4 2012 1:46PM

Hi,

I´am using netlogin (dot1.x and mac-based) configuration on my switches. For the authentication against radius i use windows server 2008 r2 (nps). Although i work with prim an sec radius server i must check the availability of these servers because of the order of my boss. If both radius servers are not working, the switch config must disable the netlogin configuration automatically. So i decide to create an upm profile an an upm timer in order to check the life of both radius servers by pinging them priodical. It is working. If the radius server are not reachable the upm profile disables the netlogin configuration. When one radius server is alive again, the netlogin conf is enabled automatically again. To this i check the nps service with a tool called prtg. This is working too. But this is not enough....

Now I want to check the services of the server instead of pinging them. Is there any possibility to check the nps service of a windows server 2008 r2 by an upm profile? Any idea? Thanks in advance.

M



(from matthias_mager)
0 Kudos
2 REPLIES 2

EtherNation_Use
Contributor II

‎01-07-2014 09:49 PM

Create Date: Jun 5 2012 1:08PM

I thought about this possibility - using ther service-unavailable feature - too, but I have rejected it. In our LAN we use VoIP and so one Switchport belongs to two VLAN´s (e.g. port 1: vlan data untagged and vlan voice tagged). If I would use the service-unavailable feature, I can select only one VLAN - data or voice and the ip-phones use the data vlan for authentication. But I need two working vlans, if the radius server is not running. Maybe I have an error in reasoning? I use EXOS image version 12.6.2.10 patch 1-10.

M

(from matthias_mager)
0 Kudos

EtherNation_Use
Contributor II

‎01-07-2014 09:49 PM

Create Date: Jun 5 2012 8:14AM

Nope.

Why go through all of this work when there is the service-unavailable feature built into XOS? Simple command to move ports into a VLAN in the event the radius servers become unreachable.

(from john_padilla)
0 Kudos
GTM-P2G8KFN