Hello again all....
I am trying to implement 802.1x authentication one my SEP/SNAC implmentation. I've configured my Cisco switches as suggested in the example configs posted by LAWMAN and I've enable the 802.1x options under the Clients - Policies - General Settings - Security Settings - Enable 802.1x Authentication, I've also check the use the client as an 802.1x supplicant and I've check the radio button for Use Symantec Transparent Mode.
When I attempt 802.1x authentication with my test client, the process fails. Wireshark captures on the client show that the first EAP request and response between switch and client are ok, but then I see a request, identity packet from the switch which has any unknown type (88) and the reponse, identity reply from the client also reports an unknown type (88) and then I receive a failure reponse from the switch.
On the switch, using debug dot1x all, I see that there is a failure at the aaa point. I am not sure what I am missing, but can some one help me understand the way in which Symantec doe dot1x.
I am happy to provide the .cap file for the capture on the client as well as the switch config if needed.
I also somewhat confused on how you build the different types of enforcer for 802.1x, the doco speaks about either the basic mode or transparent mode, I coudn't find any specifics around the actual process to build each one, eg - the actual options/commands you enter.
Any help with this would be very very appreciated as this is for a customer and this is my first time using the Symantec product.
Thanks.
Steve