Hello,
I’m having a hard time getting Lan authentication working. I currently have a radius server setup where I use it to authenticate VPN, wifi and port security. I cant seem to get it working with my HPE 1910’s.
I can see from my NPS logs that its communicating but it failing.
8021X
Information
DOT1X_AUTH_FAILURE
-IfName=GigabitEthernet1/0/13-UserName=host/SAdjei-HP.ONSITERIS.com; DOT1X authentication failed.
I really want to avoid using mac address if possible.
radius scheme system
server-type extended
primary authentication 10.10.100.209
key authentication cipher xxxxxxxxxx
security-policy-server 10.10.100.209
user-name-format without-domain
radius scheme mydomainname
server-type extended
primary authentication 10.10.100.209
primary accounting 10.10.100.209
secondary authentication 10.10.100.244
secondary accounting 10.10.100.244
key authentication cipher xxxxxxxxxxxxxxx
key accounting cipher xxxxxxxxxxxxxxxxx
user-name-format keep-original
nas-ip 10.10.100.11
accounting-on enable
interface GigabitEthernet1/0/13
stp edged-port enable
dot1x max-user 2
dot1x guest-vlan 10
dot1x mandatory-domain onsiteris
dot1x port-method portbased
dot1x