- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Web and Unmanaged
- >
- Re: 802.1X and Guest Vlan - HP 1910 16G - (3COM 29...
Web and Unmanaged
1751797
Members
5421
Online
108781
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-24-2016 07:52 AM
05-24-2016 07:52 AM
802.1X and Guest Vlan - HP 1910 16G - (3COM 2920 SFPPLUS 3CRBSG2093)
Hi,
I have a 3COM 2920 SFPPLUS 3CRBSG2093 switch which I am trying to configure with 802.1x and Guest Vlan.
If I plug in a PC with 802.1x configured to port GigabitEthernet1/0/3 and perform authentication, everything works, I am assign VLAN1. If I connect to port GigabitEthernet1/0/3 a PC without 802.1x configured I can not get guest VLAN 252.
I have followed the config "Configuring an 802.1X guest VLAN" which is on page 325 of the "HPE OfficeConnect 1910 Switch SeriesUser Guide"
Bellow is the relevant config of my switch.
Can anyone help me?
Best Regards,
André
# version 5.20 Release 1513P89 # sysname V1910-16G # clock timezone UTC add 00:00:00 # domain default enable teste # undo ipv6 # ip ttl-expires enable # lldp enable lldp compliance cdp # dot1x dot1x timer tx-period 40 dot1x authentication-method eap # web idle-timeout 30 # password-recovery enable # vlan 1 description VILAN # vlan 10 description MGMT # vlan 11 description SAN # vlan 13 description WIFI # vlan 69 description ISP1 # vlan 70 description ISP2 # vlan 250 description DMZ # vlan 251 description GUEST1 # vlan 252 description GUEST2 # radius scheme system primary authentication 192.168.2.7 key authentication cipher $c$3$xR3u/9gE/Av4JyU24qRyd+Kvv4WWcBQfo2nx user-name-format without-domain nas-ip 192.168.10.44 # domain system access-limit disable state active idle-cut disable self-service-url disable domain teste authentication lan-access radius-scheme system local authorization lan-access radius-scheme system local access-limit disable state active idle-cut disable self-service-url disable # pki entity v1910-16g common-name v1910-16g.xxx.com organization-unit XXXXXXXXXXXXXXXX organization XXXXXXXXXXXXXXx locality XXXx state XXXXX country XX fqdn v1910-16g.xxx.com ip 192.168.10.44 # pki domain vi-ca ca identifier XXXXXXXXXX certificate request from ca certificate request entity v1910-16g crl check disable # user-group system # local-user admin password cipher $c$3$J3RLKByeKcFCAvUIKerFZNduP3SZTYeNMwUSw1kMmQ== authorization-attribute level 3 service-type ssh telnet terminal service-type web local-user xxxxxxx password cipher $c$3$nJhnTYaynDyNvaFZvSwyLyBolLLMgNPw73c= authorization-attribute level 3 service-type telnet service-type web # stp mode rstp # ssl server-policy access-policy pki-domain xxx-ca # interface NULL0 # interface Vlan-interface10 ip address 192.168.10.44 255.255.255.0 # interface GigabitEthernet1/0/1 description P01->A2->NETGEAR_GS724T-P02 port link-type hybrid port hybrid vlan 1 10 13 69 to 70 252 tagged stp edged-port enable lldp tlv-enable dot1-tlv vlan-name 1 lldp tlv-enable dot1-tlv protocol-vlan-id 1 # interface GigabitEthernet1/0/2 port access vlan 69 stp edged-port enable # interface GigabitEthernet1/0/3 port link-type hybrid port hybrid vlan 1 252 untagged stp edged-port enable dot1x re-authenticate dot1x guest-vlan 252 undo dot1x handshake dot1x # interface GigabitEthernet1/0/4 stp edged-port enable # interface GigabitEthernet1/0/5 stp edged-port enable # interface GigabitEthernet1/0/6 stp edged-port enable # interface GigabitEthernet1/0/7 port access vlan 252 stp edged-port enable # interface GigabitEthernet1/0/8 stp edged-port enable # interface GigabitEthernet1/0/9 stp edged-port enable # interface GigabitEthernet1/0/10 stp edged-port enable # interface GigabitEthernet1/0/11 stp edged-port enable # interface GigabitEthernet1/0/12 stp edged-port enable # interface GigabitEthernet1/0/13 stp edged-port enable # interface GigabitEthernet1/0/14 stp edged-port enable # interface GigabitEthernet1/0/15 stp edged-port enable # interface GigabitEthernet1/0/16 stp edged-port enable # interface GigabitEthernet1/0/17 stp edged-port enable # interface GigabitEthernet1/0/18 stp edged-port enable # interface GigabitEthernet1/0/19 stp edged-port enable # interface GigabitEthernet1/0/20 stp edged-port enable # ip route-static 0.0.0.0 0.0.0.0 Vlan-interface10 192.168.10.254 # info-center loghost 192.168.2.7 # snmp-agent snmp-agent local-engineid 8000002B0320FDF125CE31 snmp-agent community read public snmp-agent community write private snmp-agent community read public snmp-agent community write vrivate snmp-agent sys-info contact xxxxxxxx@xxxx.xx snmp-agent sys-info location xxx snmp-agent sys-info version all # ntp-service source-interface Vlan-interface10 ntp-service unicast-server 192.168.10.251 ntp-service unicast-server 192.168.10.252 # ssh server enable sftp server enable # ip https ssl-server-policy access-policy ip https enable # user-interface aux 0 authentication-mode scheme user-interface vty 0 15 authentication-mode scheme # return
2 REPLIES 2
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-14-2016 02:25 AM
06-14-2016 02:25 AM
Re: 802.1X and Guest Vlan - HP 1910 16G - (3COM 2920 SFPPLUS 3CRBSG2093)
Hi,
Can anyone give me a hint how to debug the problem with the gest vlan or what am I missing in my config?
Andre
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-15-2016 02:10 AM
06-15-2016 02:10 AM
Re: 802.1X and Guest Vlan - HP 1910 16G - (3COM 2920 SFPPLUS 3CRBSG2093)
In global "system view" mode (not int gi1/0/3 mode! ), try adding command
dot1x guest-vlan 252
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP