Hi all,
i have a question regarding OAC, i've deploying a successful UAC and OAC system and now i am encountering a problem on how to disable the L2 reauthentication on OAC if the authenticaton has been failed. When i use the OAC the OAC will try to get an ip with connection status OPEN and then when it try to authenticate it will throw authentication error and the OAC will restart the connection and trying to get the ip again so it makes the pc unaccessible for a while until it get the ip, and it continues all over again. So my question is how to disable the reauthentication if its fail for once and still get the ip (the status will always just open) it will not try to authenticate again. is that possible? thank you before.
Solved! Go to Solution.
You can configure a registry key as below
HKEY_LOCAL_MACHINE\SOFTWARE\Funk Software,Inc.\odyssey\client\configuration\options\wired8021x\openOnFailure
[0]/1 default is 0. This is applicable for wired networks only. When set, Odyssey will open the adapter even after a failure. This is so that switches that have a failure VLAN can be used with OAC to put users on the remediation LAN, or external VLAN if the authentication fails.
Hi,
Yes it is possible to disable reauthentication in OAC. To diable follow the below:
OAC Administrator and/or Manager --> Tools --> Security
Uncheck "Enable automatic reauthentication"
In OAC, reauth interval that you can configure is is hours.Understanding your problem, you must also check on switch, if EAP reauthentication time-out is configured and you need to disable in switch as well.
Regards,
Raveen
Note: If this answers your questions, you could mark this post as accepted solution, that way, it would help others as well. A kudo will be bonus thanks!
You can configure a registry key as below
HKEY_LOCAL_MACHINE\SOFTWARE\Funk Software,Inc.\odyssey\client\configuration\options\wired8021x\openOnFailure
[0]/1 default is 0. This is applicable for wired networks only. When set, Odyssey will open the adapter even after a failure. This is so that switches that have a failure VLAN can be used with OAC to put users on the remediation LAN, or external VLAN if the authentication fails.
Thanks apaul !! now it works, but now the problem is the pop up message requesting for password keep appearing.. is there any way on how to disable this?
Hi,
Do you have a failure VLAN on the switch.Can you check the switch configuration and ensure that the switch retry for EAP after the authentication failure is not causing this.
NOTE:
Please mark this post as 'accepted solution' if this answers your question that way it might help others as well, a kudo would be a bonus thanks!!
i have checked the switch for any reauthentication configuration and it is disabled on default. so there is no reauthentication request from the switch. Is it suppose to be keep asking for password if the authentication fail?