Hello,
We are tyring to secure all network ports using 802.1x (EAPoL) - the configuration works for the component parts in that we can authenticate the phone (eap-md5), authenticate a PC (with CA digital cert) and a non-domain PC gets connected to the GuestVLAN - but we cannot get all parts working together.
When the PC is connected to the phone, the PC authenticates and the phone gets disconnected (PAEState is held). Apparently this has to do with MultiHostEnabled only authenticates untagged connections - the voice vlan is tagged, data untagged. We have since tried enabling ADAC (advanced untagged), LLDP-Med, etc - but the Voice vlan always gets tagged and does authenticate when the PC is connected.
Has anyone attempted this before, got any pointers, etc - surely there must be a way of getting this working when they are all connected together...???? otherwise whats the point..??
Thanks in advance,
Kenny
We are tyring to secure all network ports using 802.1x (EAPoL) - the configuration works for the component parts in that we can authenticate the phone (eap-md5), authenticate a PC (with CA digital cert) and a non-domain PC gets connected to the GuestVLAN - but we cannot get all parts working together.
When the PC is connected to the phone, the PC authenticates and the phone gets disconnected (PAEState is held). Apparently this has to do with MultiHostEnabled only authenticates untagged connections - the voice vlan is tagged, data untagged. We have since tried enabling ADAC (advanced untagged), LLDP-Med, etc - but the Voice vlan always gets tagged and does authenticate when the PC is connected.
Has anyone attempted this before, got any pointers, etc - surely there must be a way of getting this working when they are all connected together...???? otherwise whats the point..??
Thanks in advance,
Kenny
