- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Aruba & ProVision-based
- >
- Multiple RADIUS servers for 802.1x authentication
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-12-2013 01:57 AM
04-12-2013 01:57 AM
Multiple RADIUS servers for 802.1x authentication
I am attempting to use 2 RADIUS servers for 802.1x port authentication on a Procurve 2500 switch, they both work individually, but when i enter two different entries for radius-server host x.x.x.x key ZZZyy, only the first one works.
The real difficulty i am having is that seperately, when there is only one radius server entry, everything works, ports are authenticated successfully. Tried configuring dead timer also, and after the timer expires in the switch logs i can see requests are no longer being sent to that server, and they are being sent to the other server instead, but still not authenticating.
I know the switch can support up to 3 RADIUS servers, (1 primary and 2 backup) but just cant get them to failover when the first RADIUS server fails.
Any help is appreciated.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-19-2014 05:29 AM
05-19-2014 05:29 AM
Re: Multiple RADIUS servers for 802.1x authentication
Hi Taib-Tech,
I had the same issue as you and came across this note in the "Switch Management and Configuration Guide"...
NOTE: Because of an inconsistency between the Windows XP 802.1x supplicant timeout value
and the switch default timeout value, which is 5, when adding a backup RADIUS server, set the
switch radius-server timeout value to 4. Otherwise, the switch may not failover properly to the
backup RADIUS server.
This may fix your problem, I have implemented the change and will see if helps me. Unfortunately I dont have a full test environment so need to test in live :( It coudl take some time to get the results.
HTH
Don't forget to mark a post resolved if your question was answered.