Mac-authentication problem

Alexandros86 · ‎09-13-2022

Hi all,

i have a nac system (nacview) and there i see that the MAC is authenticated but there is no connectivity.

I have a HPE 1950 and there i have the following configuration

mac-authentication
mac-authentication domain nac
mac-authentication user-name-format mac-address with-hyphen lowercase
mac-authentication authentication-method chap

radius scheme nac
primary authentication x.x.x.x key simple TestNac
user-name-format without-domain

domain nac
authentication lan-access radius-scheme nac
authorization lan-access radius-scheme nac local

interface GigabitEthernet1/0/29
port access vlan 2050
mac-authentication
mac-authentication domain nac
mac-authentication re-authenticate server-unreachable keep-online
mac-authentication guest-vlan 2400
mac-authentication critical vlan 2400

on the nac i see the mac authenticated but on the switch is not.

GigabitEthernet1/0/29 is link-up
MAC authentication : Enabled
Carry User-IP : Disabled
Authentication domain : nac
Auth-delay timer : Disabled
Periodic reauth : Disabled
Re-auth server-unreachable : Online
Guest VLAN : 2400
Guest VLAN reauthentication : Enabled
Guest VLAN auth-period : 30 s
Critical VLAN : 2400
Critical voice VLAN : Disabled
Host mode : Single VLAN
Offline detection : Enabled
Authentication order : Default
User aging : Enabled
Server-recovery online-user-sync : Disabled

Auto-tag feature : Disabled
VLAN tag configuration ignoring : Disabled
Max online users : 4294967295
Authentication attempts : successful 0, failed 57

Global MAC authentication parameters:
MAC authentication : Enabled
Authentication method : CHAP
Username format : MAC address in lowercase(xx-xx-xx-xx-xx-xx)
Username : mac
Password : Not configured
MAC range accounts : 0
MAC address Mask Username
Offline detect period : 300 s
Quiet period : 60 s
Server timeout : 100 s
Reauth period : 3600 s
User aging period for critical VLAN : 1000 s
User aging period for guest VLAN : 1000 s
Temporary user aging period : 60 s
Authentication domain : nac

Sunitha_Mod · ‎09-13-2022

Hello @Alexandros86,

Thank you for writing to us! HPE Networking forum has moved to Aruba Airheads Community and for HPE networking and Aruba product queries, request you to visit and post your query here: Aruba Airheads Community

You can refer to the below link as well for more details:

HPE Networking forum migration to Aruba Airheads c... - Hewlett Packard Enterprise Community

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Mac-authentication problem

Mac-authentication problem

Re: Mac-authentication problem