Hi Faaizan
I guess you are looking for a method to either keep authenticating your
802.1x users while the RADIUS server is offline or at least to notify
the users.
Take a look at the "Inaccessible Authentication Bypass" feature, as it
allows you to place your users in a specific vlan, when the
authentication server (radius, tacacs) is offline. This vlan could be
your production vlan, but it's to be considered a security threath.
An example is shown at
http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_46_se/configuration/guide/sw8021x.html#wp1194433
Regards,
Lars Christensen
CCIE #20292
On 20-02-2011 10:38, faizan khurshid wrote:
> To all
>
> How to enable a procedure when radius not reachable or not available user
> move to local authentication
> following is the configuration for radius server i need when there is no
> radius server user move local authentication .i have already created local
> username password on my switch
>
> aaa authentication dot1x default group radius
> radius-server host 172.l20.39.46 auth-port 1612 key rad123
>
>
> Thanks
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Sun Feb 20 2011 - 15:58:35 ART
This archive was generated by hypermail 2.2.0 : Tue Mar 01 2011 - 07:01:50 ART