From: alee@cccis.com
Date: Tue Feb 01 2005 - 12:59:56 GMT-3
Hi guys,
I hate to post off-topic questions on this group, but this is the last
resort where I can get help from. Anyone is doing Cisco 8021x
authentication against Active Directory server over Ethernet? I have Cisco
6509 switches on the edge doing authentication through Cisco ACS server
which passes EAPOL to authentication Microsoft Active Directory server. If
the user account is in the AD server, then he is allowed to login to
domain; otherwise, he will be put into a guest VLAN.
We have all kind of problems with it. Some users can't authenticate at
all, no attempt seen in the ACS log. Some users have intermittent problems
while some get into the guest VLAN even they have accounts in the AD
server. I open a case with Cisco, they have been working on it for half a
year. Still haven't identified the problem and found a solution. Tried to
asked our local rep to give me some reference who is doing same 802.1x
authentication like us, they came back saying they can't find one. Looks
like we are the pioneer! I can't believe it. If anyone is doing same
authentication scheme like my company, please share your experience with
me. I will greatly appreciate your help.
Arthur Lee
This archive was generated by hypermail 2.1.4 : Thu Mar 03 2005 - 08:51:15 GMT-3