802.1x configuration for 3500 switch and 2800 switc

Can anyone point me to a document on how to do a 3500 switch 802.1x configuration as well as a 2800 switch? How do you define the server auth-port? Thanks

Even tough this link is for CAT6k, it has some very useful screen-shots that will help you to successfully implement dot1x:
http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a00801d11a4.shtml
Regards
Farrukh

Similar Messages

  • Client context error message while configuring for social login and personalization

    Hi,
    I am getting the below exception while configuring for social login and personalization.
    27.12.2012 11:21:25.463 *ERROR* [127.0.0.1 [1356587485463] GET /etc/cloudservices/facebookconnect/sample_fb.login.html/callback/connect HTTP/1.1] com.day.cq.wcm.core.impl.designer.DesignerImpl No design at /etc/design/cloudservices. Using default.
    27.12.2012 11:21:46.549 *ERROR* [127.0.0.1 [1356587485463] GET /etc/cloudservices/facebookconnect/sample_fb.login.html/callback/connect HTTP/1.1] com.adobe.granite.auth.oauth.impl.oauth2.Oauth2Helper Problems while creating connection.
    27.12.2012 11:21:46.549 *WARN* [127.0.0.1 [1356587485463] GET /etc/cloudservices/facebookconnect/sample_fb.login.html/callback/connect HTTP/1.1] com.adobe.granite.auth.oauth.impl.oauth2.Oauth2Helper token was null or not in UNAUTHORIZED state:1
    27.12.2012 11:21:46.549 *ERROR* [127.0.0.1 [1356587485463] GET /etc/cloudservices/facebookconnect/sample_fb.login.html/callback/connect HTTP/1.1] com.adobe.granite.auth.oauth.impl.servlet.OAuthProfileImportServlet requestAccessToken: could not retrieve user
    27.12.2012 11:21:46.549 *ERROR* [127.0.0.1 [1356587506549] GET /etc/cloudservices/facebookconnect/sample_fb.login.html HTTP/1.1] com.day.cq.wcm.core.impl.designer.DesignerImpl No design at /etc/design/cloudservices. Using default.
    27.12.2012 11:21:48.455 *ERROR* [127.0.0.1 [1356587508455] GET /etc/clientcontext/default/contextstores/profiledata/loader.json HTTP/1.1] org.apache.sling.engine.impl.SlingRequestProcessorImpl service: Uncaught SlingException org.apache.sling.api.SlingException: An exception occurred processing JSP page /libs/cq/personalization/components/profileloader/command/load/load.json.jsp at line 41
    at org.apache.sling.scripting.jsp.jasper.servlet.JspServletWrapper.handleJspExceptionInterna l(JspServletWrapper.java:574)
    at org.apache.sling.scripting.jsp.jasper.servlet.JspServletWrapper.handleJspException(JspSer vletWrapper.java:499)
    at org.apache.sling.scripting.jsp.jasper.servlet.JspServletWrapper.service(JspServletWrapper .java:451)
    at org.apache.sling.scripting.jsp.JspServletWrapperAdapter.service(JspServletWrapperAdapter. java:59)
    Thanks,
    Shankar .A

    Hi Shankar,
    Any luck with this issue. I am also seeing the same issue
    Thanks
    Pushparajan

  • Setup and configuration for system monitoring and IT Reporting for Java sys

    Hi all,
    How to setup and configuration for system monitoring and IT Reporting for Java system ?
    How to connect Java system to Solman system?
    Regards,
    Neni

    HI,
    What is your OS? You can use SAPCCMSR.exe to monitoring  IT Reporting Java system on Solman.
    Go to solman rz21 create a csmreg user. and configuration fil for agent. copy configuration fil on usr/sap/ccms/..
    Go to comman line cd ../user/sap/xxx/sys/exe/.../ wite SAPCCMSR.00 -R pf=< ...../sys/profile/instans profile> .
    You can se agent on rz10 and use this connaction on rz20 to monitoring and IT Reporting Java system on Solman.
    I hope this help

  • Cisco Architectures for 2950/2960 Switches and 2800 Routers

    Hello,
    I have a question regarding the architectures of these three series, i.e. the type of switch fabric they use and the general architecture (first, second, or third generation regarding the sharing of the bus, memory and the type of switch fabric). We have so far learned these three generation and our assumption is that the only generation being produced now is the third (crossbar) generation, but so far we have to information to back up this claim. We are doing a study on buffer sizing in edge routers/switches so knowing the exact architecture of each model is our priority.
    Thank you for reading and thanks in advance for the answers. 

    Disclaimer
    The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
    Liability Disclaimer
    In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
    Posting
    Exact details on Cisco switch and/or router architecture can be hard to come by, as much of the information, Cisco appears to consider proprietary.
    Most switches have some kind of cross bar architecture.  Overall bandwidth tends to be higher in later variants (to support higher port densities and/or higher bandwidth ports).  Later switch architectures are less likely to block at ports.  However, there are often other architecture changes which may improve or worsen performance.  For example, 2960 tends to have more fabric bandwidth than the 2950, but the 2960 has different port buffer management (I believe) from the 2950, often resulting in more port drops with bursty traffic.
    True routers, like the 2800 series, I believe use a PCI bus, with additional bandwidth restrictions to the modules.  They will well support the WAN bandwidths they are recommended for, but they do not well support LAN port bandwidths.  Again, specific architecture details can be hard to come by.

  • ALE Configuration for PEXR2002 IDoc  and PAYEXT message type sending to XI

    Hi all,
              I need ALE Configuration for PEXR2002(Basic Type) IDoc , it's message type PAYEXT.
    I don't know ALE Configuration for sending data from SAP IDS to SAP XI.????
    I need ALE Configuration doc/pdf??
    Please give me some guidline for this..
    Regards,
    Umesh

    Umesh,
    I was wondering if you have had any luck creating the configuration for PEXR2002 Idoc, PAYEXT message types, and sending the result set to XI. 
    I need to perform the same task within our R3 environment using the FTP protocol in XI to send the file to the Bank to be processed.
    Any help or direction would be great.
    Thanks,
    Dave

  • Adding second 5508 Wireless Controller, how to best configure for load balancing and redundancy?

    We recently purchased a second 5508 wireless controller (both licensed for 100+ AP's).  What is the easiest way to configure and add the second controller so I can split the load between the 2 controllers and provide failover capability?  I do not want to run in an active/standby mode since that will effectively cut our AP capacity by half even with both controllers running. 
    Should I just manually configure the new controller (long and drawn out process to configure all the parameters), backup the current controller configuration and import to the second controller (then change the ip address) or is their an easier way to cause the two controllers to synchronize the configurations? 
    We are currently running 7.0.240.0 on our active controller and I would rather not upgrade it until we get the new controller online so I can have less downtime and fail AP's between controllers.
    What can you recommend? 
    Jim

    I'm assuming then, when I update the software on the controllers I won't be able to choose which controller is primary for an AP anymore and will lose access to the 100 AP licenses (and the capability to have 100 AP's registered, 100 licenses on each Controller).
    Read the Deployment Guide.  It should mention that you can choose which controller is the "primary" and which one is the "secondary".
    If I'm not concerned about quick failover can I still assign a primary and secondary controller for each AP and utilize all 200 AP licenses that are split between the 2 controllers?
    You sure can.  But this "old school" method is a very expensive method.  Why?  Because this means that you have two controllers with similar AP licenses.  The newer AP SSO means one controller has a full license and the other has only an HA SSO license, which is a lot cheaper.

  • Nominal configuration for boot drive and internal RAID setup

    Hello, I'd appreciate some advice on the following please.
    I'm planning the build of a Mac Pro to act mainly as a photo editing workstation.
    Considering the following disc setup:
    Bay 1. 500GB with two partitions - 150GB for OS X and remaining for applications
    Bay 2. 250GB XP/Vista for occasional use. All Windows apps/data quarantined on this disk.
    Bays 3 and 4. 2x 500GB RAID0 (backed up externally) for data and workspace.
    WRT RAM, I've read that 4 matched DIMMs in the same riser is the optimal config, so looking at 4x 1GB.
    I'd be grateful for any comments as to whether I'm on the right track here.
    Thanks
    Ben
    Mac Pro   Mac OS X (10.4.10)  

    I set up a similar configuration for photo editing. First, partitions are not as useful as they were in the pre OS X era. Just load your OS and all applications on the same drive as there is no benefit, as far as I know, to separating them into partitions. Second, your 4 X 1GB RAM should be split between the two risers, not on the same riser. Put two DIMMs in the first two slots of each riser. 4 X 1GB hits a sweet spot in the cost/benefit analysis as long as you don't need more than 4GB. I use Lightroom extensively and 4GB is plenty.

  • Optimum Configuration for Parallels 5 and Windows 7 Home Premium 64-bit

    I recently installed Parallels 5 and Windows 7 Home Premium 64-bit on my 15" MacBook Pro (recently purchased). What is the optimum configuration for the Virtual Machine?

    Check Parallels forum and FAQ

  • WAAS Configuration for 3750 Switch

    I am configuring a 3750 switch with 12.2(52)SE according to:
    (from https://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_52_se/configuration/guide/3750_scg.pdf )
    This example shows how to configure SVIs and how to enable the web cache service with a multicast group list. VLAN 299 is created and configured with an IP address of 175.20.20.10. Gigabit Ethernet port 1 is connected through the Internet to the web server and is configured as an access port in VLAN 299. VLAN 300 is created and configured with an IP address of 172.20.10.30. Gigabit Ethernet port 2 is connected to the application engine and is configured as an access port in VLAN 300. VLAN 301 is created and configured with an IP address of 175.20.30.50. Fast Ethernet ports 3 to 6, which are connected to the clients, are configured as access ports in VLAN 301. The switch redirects packets received from the client interfaces to the application engine.
    Note Only permit ACL entries are being used in the redirect-list; deny entries are unsupported.
    Switch# configure terminal
    Switch(config)# ip wccp web-cache 80 group-list 15
    Switch(config)# access-list 15 permit host 171.69.198.102
    Switch(config)# access-list 15 permit host 171.69.198.104
    Switch(config)# access-list 15 permit host 171.69.198.106
    Switch(config)# vlan 299      WEB  SERVER
    Switch(config-vlan)# exit
    Switch(config)# interface vlan 299
    Switch(config-if)# ip address 175.20.20.10 255.255.255.0
    Switch(config-if)# exit
    Switch(config)# interface gigabitethernet1/0/1
    Switch(config-if)# switchport mode access
    Switch(config-if)# switchport access vlan 299
    Switch(config)# vlan 300 WAE
    Switch(config-vlan)# exit
    Switch(config)# interface vlan 300
    Switch(config-if)# ip address 171.69.198.100 255.255.255.0
    Switch(config-if)# exit
    Switch(config)# interface gigabitethernet1/0/2
    Switch(config-if)# switchport mode access
    Switch(config-if)# switchport access vlan 300
    Switch(config-if)# exit
    Switch(config)# vlan 301 CLIENTS
    Switch(config-vlan)# exit
    Switch(config)# interface vlan 301
    Switch(config-if)# ip address 175.20.30.20 255.255.255.0
    Switch(config-if)# ip wccp web-cache redirect in
    Switch(config-if)# exit
    Switch(config)# interface gigabitethernet1/0/3 - 6
    Switch(config-if-range)# switchport mode access
    Switch(config-if-range)# switchport access vlan 301
    Switch(config-if-range)# exit
    ===================================================================
    Question:  How do I configure my WAE to play nicely with this switch?

    Hi James,
    Here is the link to WCCP config part on WAE:
    http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v441/configuration/guide/traffic.html#wp1041742
    In your case, if my understanding is right, VLAN300 is where you want to connect WAE and WAE is also L2 adjacent. if that is true, here is the config you need on WAE:
    wccp router-list 1 171.69.198.100
    wccp tcp-promiscuous router-list-num 1 l2-redirect mask-assign l2-return
    wccp version 2
    Please note that 3750 supports L2 redirection only with redirect IN statements on 3750 interfaces connected to servers and clients.
    Hope this helps.
    Regards.

  • Certificate configuring for exchange 2013 and office 365 hybrid deployment

    Please advise on what digital certificate requirements for hybrid deployment and to configure it.

    Hi sphilip,
    If you want to deploy AD FS with Single Sign-On(SSO), we need use certificate to establish secure trust between on-premises Exchange 2013 and Office online.
    We can use and configure a trusted third-part CA within all on-premises Exchange 2013 Mailbox and Client Access servers to ensure secure mail transport, more details about
    Office 365 Hybrid Configuration Certificate Planning, for your reference:
    http://blogs.technet.com/b/neiljohn/archive/2011/08/25/office-365-hybrid-configuration-certificate-planning-adfs-exchange-web-services-owa-oa.aspx
    Best Regards,
    Allen Wang

  • Question about VLAN handling for virtual switches and vnets

    Regards,
    We are encountering some problems when using VLAN tagged 10g ethernet. We assign the VLANS to the vsw like this:
    ldm add-vsw net-dev=net2 mtu=9000 vid=vid1,vid2,.... mode=sc primary-vsw0 primary
    the mode=sc is due to us planning for possible Solaris Cluster installation for some guests. The guest get its vnets like this:
    ldm add-vnet mode=hybrid vid=vid1 vnet0 primary-vsw0 guest
    we use mode=hybrid since this is a NIU 10 gig eth interface in a T4-4. My questions are:
    1. Do you see any problems with this config ?
    2. Do you know of any problems with using VLAN tagging in virtual switches/virtual nets for LDOMs ?
    3. When adding, subtracting VLANS to the vsw does it need to recreated or does a ldm set-vsw vid=vid1,... work dynamically (this goes of course for other vsw properties as well) ?
    This is VM Server for SPARC v2.2, Solaris 11 for control and service domains, solaris 10 in the guest LDOMs.
    Thanks,
    Edited by: DamnGoodCoffee! on Nov 2, 2012 4:59 AM

    Hi,
    1.
    - If you want that the vnet is handling the VLAN tagging for you, you need to set the pvid.
    - If you want to do the VLAN tagging in the guest LDOM (via the interface name vnetVLANID00x), it is OK.
    2. We use VLAN tagging in vnetX via setting the pvid for the vnet for guest LDOMs, and we use the interface name based VLAN tagging in the primary domain on the vsw interface.
    3. You don't need to recreate, you can set it. I'm not sure if you need to reboot to let it take effect, but IIRC it is dynamic (should be easy to test).
    Bye,
    Alexander.

  • Best RAID configuration for storing Datafiles and Redo log files

    Database version:10gR2
    OS version: Solaris
    Whis is the best RAID level for storing Datafiles and Redo log files?

    Oracle recommends SAME - Stripe And Mirror Everything.
    In the RAC Starter Kit documentation, they specifically recommend not using RAID5 for things like voting disk and so on.
    SAN vendors otoh claims that their RAID5 implementations are as fast as RAID10. They do have these massive memory caches...
    But I would rather err on the safer side. I usually insist on RAID10 - and for those databases that I do not have a vested interest in (other than as a DBA), and owners, developers and management accept RAID5, I put the lead pipe away and do not insist on having it my way. :-)

  • Configuration for Airport Extreme and Linksys SD2008 Switch

    Does anyone have any experience using the Airport Extreme with a switch? Does DHCP need to be turned off or are there any other tricks to configure? I will be using this for my office PC's (Vista, and XP2).
    Thanks.

    Connecting a switch should have nothing to do with the decision to use DHCP or not. An Ethernet switch is smarter than a hub but it does not do IP address assignment like a router.

  • 802.1x configuration for switch Ports

    hi All,
    I am looking for help on a specific trouble with a custome implementation on 802.1x.
    Currently its set as below;
     authentication control-direction both
     authentication host-mode single-host
     no authentication open
     authentication priority dot1x mab
     authentication port-control auto
     no authentication periodic
     authentication timer restart 0
     authentication timer reauthenticate 3600
     authentication timer inactivity 0
     authentication violation shutdown
     no authentication fallback
     mab radius
     dot1x pae authenticator
     dot1x timeout quiet-period 60
     dot1x timeout server-timeout 0
     dot1x timeout tx-period 15
     dot1x timeout supp-timeout 30
     dot1x timeout ratelimit-period 0
     dot1x max-req 2
     dot1x max-reauth-req 2
    trying to understand what parameter i need to change in order for Laptop/desktop coming from loosing access after going in to Sleepmode.
    Any help is appreciated.

    You might want to activate periodic authentication. I have not tested it myself, but I believe this should help.

  • SPAN or RSPAN Configuration for intermediate Switch.

    Hi
    I am having three switches. My Sniffer is connected with my Core Switche port 11.
    I am having 1 core SW, 2 Access SW.
    CoreSW --------------Trunk--------------->AccessSw1-----------------Trunk-------------------------AccessSw2.
    I am trying to configure Monitor session between AccessSW2 and Core SW.
    my configuration ar Core SW
    monitor session 1 destination interface Fa0/11
    monitor session 1 source remote vlan 901
    At AssessSw2
    monitor session 1 source interface Fa0/1 - 22
    monitor session 1 destination remote vlan 901
    these configurations work fine if I ommit AccessSw1.
    So what Configuration I need at AccessSW1 to communicate fine. Please help me on this..

    Alexander,
    You will have to specify the remote vlan on Sw2, just creating it won't help. Following is the config for the SW2.
    Switch(config)# monitor session 1 source remote vlan 901Switch(config)# monitor session 1 destination interface fastEthernet0/5
    The commands are a bit platform specific, as they are a bit different for the 6500 switches:
    For SW2 on Cisco6500
    Router(config)# monitor session 1 type rspan-destination
    Router(config-rspan-dst)# source remote vlan 2
    Router(config-rspan-dst)# destination interface gigabitethernet 1/2
    Thanks
    Ankur
    "Please rate the post if found useful"

Maybe you are looking for