Filter
Top Products
Troubleshooting
Unusual Network Activity
Port A9 shows an "Open" status even
though Access Control is set to
Unauthorized (Force Auth). This is
because the port-access
authenticator has not yet been
activated.
Figure C-1. Authenticator Ports Remain “Open” Until Activated
RADIUS server fails to respond to a request for service, even though
the server’s IP address is correctly configured in the switch. Use
show radius to verify that the encryption key (RADIUS secret key) the switch
is using is correct for the server being contacted. If the switch has only a global
key configured, then it either must match the server key or you must configure
a server-specific key. If the switch already has a server-specific key assigned
to the server’s IP address, then it overrides the global key and must match the
server key.
Global RADIUS Encryption Key
Unique RADIUS Encryption Key
for the RADIUS server at
10.33.18.119
Also, ensure that the switch port used to access the RADIUS server is not
blocked by an 802.1x configuration on that port. For example, show port-
access authenticator < port-list > gives you the status for the specified ports.
Also, ensure that other factors, such as port security or any 802.1x configura-
tion on the RADIUS server are not blocking the link.
C-12