Comware Based
1748287 Members
3203 Online
108761 Solutions
New Discussion

Problems with Switch HP A5120

 
williamrn
Occasional Visitor

Problems with Switch HP A5120

Hello,
I'm trying use a Switch HP A5120 with authentication 802.1x and EAP-TLS, but I'm receiving the followed message in the switch "DOT1X authentication failed", If I just use the authentication 802.1x user and password, It's works, but the problem happens when a I try use the certification EAP-TLS, I don't have certainty if this switch support TLS. I made the same test with Switch Cisco 2960-X to test the NPS and authentication accross certificate and it's works correcly, the version of the firmware in use is "5120.EI-4210G-4510G_5.20.R2221P15-US" last available in the site. Someone could help me with this problems?

 

My configuration.

 

<Switch> system-view

[Switch] radius scheme RADIUS-XXX

 

[Switch-RADIUS-XXX] primary authentication 172.16.52.5

[Switch-RADIUS-XXX] secondary authentication 172.16.52.6

[Switch-RADIUS-XXX] key authentication XXXXXX

 

[Switch-RADIUS-XXX] user-name-format with-domain

[Switch-RADIUS-XXX] quit

 

[Switch] domain XXX

 

[Switch-isp-xxx.com.br] authentication lan-access radius-scheme RADIUS-XXX

[Switch-isp-xxx.com.br] authorization lan-access radius-scheme RADIUS-XXX

 

[Switch] domain default enable XXX

 

[Switch] dot1x

[Switch] dot1x authentication-method eap

 

[Switch] interface gigabitethernet 1/0/1

[Switch-GigabitEthernet1/0/1] dot1x

[Switch-GigabitEthernet1/0/1] dot1x re-authenticate

[Switch-GigabitEthernet1/0/1] dot1x port-method portbased

[Switch-GigabitEthernet1/0/1] undo dot1x handshake