Spycharles,
Can we see some "show authe sess int f0/37" and "debug auth all" and "debug
dot1x all" from start through all the different stages please?
Also, the configuration on the port would be useful here.
Sadiq
On Thu, May 27, 2010 at 11:50 PM, spycharlies <spycharlies_at_gmail.com> wrote:
> Hello Group,
>
> ..has anyone come across these errors ? When I log in initially, everything
> works fine. No errors, authentication and authz thru ACS works great, no
> issue.
>
> But when i log off my machine (winXPsp3 or /win7) and try logging back in,
> I
> couldn't. I get all these errors...
>
> The only way i can log back into my machine is to physically unplugging the
> ethernet cable and then plug it back it..Weird !
>
> %DOT1X_SWITCH-5-ERR_ADDING_ADDRESS: Unable to add address
> 0015.xxxx.xxxx.xxxx on Fa0/37
> %AUTHMGR-5-SECURITY_VIOLATION: Security violation on the interface Fa0/37,
> new MAC address (0015.xxxx.xxxx) is seen.
> %AUTHMGR-5-SUCCESS: Authorization succeeded for client (0015.xxxx.xxxx) on
> Interface Fa0/37
> %DOT1X-5-SUCCESS: Authentication successful for client (0015.xxxx.xxxx) on
> Interface Fa0/37
>
> Not sure if my switches are buggy (2960 with updated image) or Windows and
> dot1x just don't agree
>
> Any input appreciated
>
> Thanks,
>
> Charlie
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- CCIE #19963 Blogs and organic groups at http://www.ccie.netReceived on Fri May 28 2010 - 09:19:33 ART
This archive was generated by hypermail 2.2.0 : Tue Jun 01 2010 - 07:09:54 ART