Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

UAC and 3COM 5500 switches

Azaben_
Occasional Contributor
‎07-30-2012 01:29:AM
‎07-30-2012 01:29:AM

UAC and 3COM 5500 switches

Hi All,

 

Im trying to configure 802.1x auth. on our 3com 5500 switches with no luck, even the vendor support was unable to help us on this, I wonder if anyone can provide me with the needed the commands?

 

Many thanks in advance,

0 Kudos
4 REPLIES 4
Raveen_
Regular Contributor
‎07-30-2012 05:46:AM
‎07-30-2012 05:46:AM

Re: UAC and 3COM 5500 switches

Hi Azaben,

 

Below configuration I got it from internet, I haven't tested but it should work, make sure you're running the latest software version 3.3.2p19 or above.

 

 

------------------------------------------------------------------------

 

 

 domain default enable yourdomain
 port-security enable

 dot1x authentication-method eap
 undo dot1x handshake enable

 MAC-authentication domain yourdomain
 MAC-authentication authmode usernamefixed
 MAC-authentication authusername yourmacauthusername
 MAC-authentication authpassword somesecret

radius scheme yourscheme
 server-type extended
 primary authentication 192.168.0.1
 primary accounting 192.168.0.1
 accounting optional
 key authentication somesecret
 key accounting somesecret
 calling-station-id mode mode2 uppercase

domain yourdomain
 scheme radius-scheme yourscheme
 accounting radius-scheme yourscheme
 vlan-assignment-mode vlan-list

interface Ethernet1/0/1
 stp edged-port enable
 port link-type hybrid
 port hybrid vlan 3 untagged
 undo port hybrid vlan 1
 port hybrid pvid vlan 3
 broadcast-suppression pps 3000
 port-security max-mac-count 1
 port-security port-mode userlogin-secure-or-mac
 port-security guest-vlan 3
 dot1x max-user 1
 MAC-authentication max-auth-num 1

 

------------------------------------------------------------

 

Note: If I have answered your question right, you could mark this post as accepted solution, that way, it helps others as well. Kudos will be bonus thanks!!

 

Regards,

Raveen

0 Kudos
Azaben_
Occasional Contributor
‎08-01-2012 03:51:AM
‎08-01-2012 03:51:AM

Re: UAC and 3COM 5500 switches

Hi Raveen,

 

Thanks a lot, but unfourtunatly this did not work as expected, i did not see the nas-ip command that should address the RADUIS server Ip address.

 

did you work on 3com 5500 before, i have the correct command that worked on 4800 model, but those commands did not work with the 5500 model, is there any tool that can convert the command to be compatabile with the needed model?

 

Many thanks in advance,

 

0 Kudos
Raveen_
Regular Contributor
‎08-01-2012 03:53:AM
‎08-01-2012 03:53:AM

Re: UAC and 3COM 5500 switches

Try this..

 

#
dot1x
dot1x retry 10
dot1x timer handshake-period 1024
dot1x retry-version-max 10
dot1x dhcp-launch
dot1x authentication-method eap
#
radius scheme system
radius scheme testlab-scheme
server-type extended
primary authentication xxx.xxx.xxx.xxx (IC IP)
accounting optional
key authentication "Radius_secret"
nas-ip xxx.xxx.xxx.xxx  (local IP)

#
domain system
domain testlab-domain
scheme radius-scheme testlab-scheme
authentication radius-scheme testlab-scheme
vlan-assignment-mode string

 

Regards,

Raveen

0 Kudos
Raveen_
Regular Contributor
‎08-01-2012 03:54:AM
‎08-01-2012 03:54:AM

Re: UAC and 3COM 5500 switches

This has already been discussed, please refer:

 

https://forums.pulsesecure.net/topic/pulse-policy-secure/4724-dynamic-vlans

 

Regards,

Raveen

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.