Business Community > Switches > 802.1X mac based authentication does not work
< Switches

802.1X mac based authentication does not work

802.1X mac based authentication does not work

802.1X mac based authentication does not work
802.1X mac based authentication does not work
a week ago - last edited a week ago
Tags: #VLAN & Multi-Networks #radius
Model: SG2016P  
Hardware Version: V1
Firmware Version: 1.20.4

Hi!

 

I setup the buit-in radius server like described in this kb article. Thank you @Death_Metal for this great guide and video. 

But I want to use it with mac based auth for my cameras. After setting up everthing the camera with mac EC-71-DB-53-B3-1B does not get an IP connection.

What I am doing wrong?

Thank you inadvance!

 

Br
Ronny

 

 

  0      
 
  0      
 
#1
Options
2 Accepted Solutions
Re:802.1X mac based authentication does not work-Solution
a week ago - last edited a week ago

@Clive_A After reading the whole part about 802.1X again in the OC user guide I finally found the hint that solved my problem.

To enable MAB on a port you need to click twice, only if the rectancle around the hook is displayed MAB is activated on that port.

Very tricky dear tp link guys :-)

 

Recommended Solution
  1  
  1  
#6
Options
Re:802.1X mac based authentication does not work-Solution
a week ago - last edited a week ago

  @sp00ky 

You missed to enable the tunneled reply of the Radius server.

I have the same functionality for Arlo cameras connected through WiFi and it works perfectly.

 

Thank you,

Fra

Recommended Solution
  1  
  1  
#7
Options
7 Reply
Re:802.1X mac based authentication does not work
a week ago

Hi @sp00ky 

Thanks for posting in our business forum.

What if you follow the guide and test it with a computer?

I am suspicious if the VLAN or RADIUS VLAN works with the IPC. Is the port untagged or tagged?

Do you even get an IP from the camera?

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#2
Options
Re:802.1X mac based authentication does not work
a week ago - last edited a week ago

@Clive_A I also tried with a PC and MAC based auth but also the PC is not getting an IP. I even don't see a log entry in Omada.What I am doing wrong?

 

Br
sp00ky

  0  
  0  
#3
Options
Re:802.1X mac based authentication does not work
a week ago

Hi @sp00ky 

Thanks for posting in our business forum.

sp00ky wrote

@Clive_A I also tried with a PC and MAC based auth but also the PC is not getting an IP. I even don't see a log entry in Omada.What I am doing wrong?

 

Br
sp00ky

Can you post the configuration screenshots of each step that are shown in the Death Metal guide? I gotta verify step by step of your config before I come to a suggestion.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#4
Options
Re:802.1X mac based authentication does not work
a week ago

Okay I got it to work with user authentication. My failure was that I didn't uncheck the verify server by certificate. But if I want to authenticate against the computers mac address it is not working. I even don't see any log message in omada controller. I can only set it to computer authentication, than the PC tries to authenticate with domain/computer name.  How the hack is this working?

 

  0  
  0  
#5
Options
Re:802.1X mac based authentication does not work-Solution
a week ago - last edited a week ago

@Clive_A After reading the whole part about 802.1X again in the OC user guide I finally found the hint that solved my problem.

To enable MAB on a port you need to click twice, only if the rectancle around the hook is displayed MAB is activated on that port.

Very tricky dear tp link guys :-)

 

Recommended Solution
  1  
  1  
#6
Options
Re:802.1X mac based authentication does not work-Solution
a week ago - last edited a week ago

  @sp00ky 

You missed to enable the tunneled reply of the Radius server.

I have the same functionality for Arlo cameras connected through WiFi and it works perfectly.

 

Thank you,

Fra

Recommended Solution
  1  
  1  
#7
Options
Re:802.1X mac based authentication does not work
a week ago

@nicolati You are right the tunnel reply also needs to be activated, i already did earlier. But the real missing piece was this two functional ack hook.

  0  
  0  
#8
Options

Information

Helpful: 0

Views: 177

Replies: 7

Tags

VLAN & Multi-Networks
radius
Related Articles
MAC-Based Authentication for WPA-Enterprise.
923 0
VLAN MAC filtering or other solution
136 0
 802.1x Port Method MAC Based useless?
1514 0
 802.1x: MAB / VLAN-Assignment / MAC-Based
2545 0
Mac-Based Authentication for Wired/Wireless with Dynamic VLAN
56 0
  MAC-Based Authentication for WPA-Enterprise
461 5
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.