NAC-L2-802.1x with 7940 IP Phones and builtin swithport?

Similar Messages

• NAC Framework NAC-L2-802.1x with Wireless AP1242AG?

  Hi
  Can anyone provide some info on setting up NAC-L2-802.1x with a Wireless AP1242AG (not using the NAC Appliance, but the Framework). I cant seem to find the equivalent dot1x port control auto commands on the access-point. Thanks
  Jason

  NAC assesses the state, or posture, of a host to prevent unauthorized or vulnerable endpoints from accessing the network. Enforcement is performed through an authorization policy that is centrally defined on a single ACS server or delegated to multiple NAC posture validation servers

• Hi...i bought the new iphone 4 and would like to ask how can i transfer all my data from my old iphone to the new one?  If I will do "synchronization" through itunes with the old phone and the plug in the new one will that be the case?

  Hi...i bought the new iphone 4 and would like to ask how can i transfer all my data from my old iphone to the new one?  If I will do "synchronization" through itunes with the old phone and the plug in the new one will that be the case?

  Follow the instructions in this article to transfer your info: iPhone: Transferring information from your current iPhone to a new iPhone

• Hi all, i can't sync over wifi between my iPhone 4 and Windows 7 64 bit, wifi sync works with the same phone and my Windows 8 machine, tried solutions from other threads with no luck, just thought i'd see if anyone else had any ideas, thanks.

  Hi all, i can't sync over wifi between my iPhone 4 and Windows 7 64 bit, wifi sync works with the same phone and my Windows 8 machine so the problem seems confined to Windows 7. I've tried solutions from other threads -
  Making sure everything is allowed through firewall
  Rebooting phone/laptop/router
  Disabling ipv6
  Disabling all networks except the one curently on
  Re-installing iTunes
  Restoring iPhone
  No luck with any of those unfortunately so i just thought i'd see if anyone else is still without wifi sync after trying those as well and if you ever found a fix, thanks.

  I just wanted to leave a note that it's working now. I'm not sure if it was the latest iTunes update that got it working or that i decided to start a new library instead of using the one i had backed up on Windows 8 (it didn't occur to me to check using the old library when i re-installed iTunes). But if anyone is having this problem, it might be worth trying again with a new installation of iTunes to see if the latest update works for you, and if not, try using a fresh library instead of a backup (by fresh library i mean discard your old library completely and start a new library, not just restore as new iPhone, a whole new library).

• 3560G and 802.1X with Cisco IP Phone

  Hi,
  We have been doing some test on our 3560G switch with 802.1X. The switch port has a Cisco IP Phone 7940 connected and at the back of the IP Phone is the PC (802.1X client).
  The PC authenticates with the computer name or the username properly without any problems. However problem is that the port stays opened/authorized even after disconnecting the Laptop from the phone. Only disconnecting the phone from the switch disables the port and enforces authentication.
  This totally defeats the purpose for us.
  IOS: 12.2(20)SE3
  aaa new-model
  aaa authentication dot1x default group radius
  aaa authorization network default group radius
  dot1x system-auth-control
  interface GigabitEthernet0/40
  switchport access vlan 4
  switchport mode access
  switchport voice vlan 15
  dot1x port-control auto
  dot1x timeout quiet-period 15
  dot1x timeout reauth-period 30
  dot1x max-req 1
  dot1x reauthentication
  spanning-tree portfast
  spanning-tree link-type point-to-point
  Any ideas will be appreciated.
  Thanks,
  Cheers
  Kartik

  I believe the problem should be solved with the new phone firmware:
  Ref Cisco Document:
  http://www.cisco.com/en/US/products/hw/phones/ps379/prod_release_note09186a0080461f84.html
  "Firmware release 7.2(2) provides support for the Cisco IP Phone models 7960G and 7940G to monitor IEEE 802.1X messages between an authenticating switch and a connected PC (supplicant).
  When a PC is disconnected from the Cisco IP Phone, the phone issues an EAPOL-Logoff message on behalf of the PC to the authenticating switch.
  Hope This Helps
  Jarle Steffensen

• Catalyst Express 500 802.1q with non-Cisco Phones

  This weekend we spent hours trying to get 802.1q tagging to work on a VLAN with ShoreTel phones. The user interface on this switch seems to only allow "Cisco-Voice" VLAN, without any specifics. This didn't work. The specs on this switch say that the .1q is supported, but we couldn't figure it out. The more expensive switches were easier to configure for Voip QoS.
  Can anyone advise me on the tricks to getting this to work with the lower end Catalyst Express 500? Or does this switch only support 802.1q with Cisco phones?

  Cisco IP Phone uses CDP to let the ip phone know what vlan it's suppose to be (via voice-vlan). shore tel would definitely not use CDP since CDP is cisco proprietory, so it's voice vlan must be defined on it, I rememer Avaya being the same way. So, having said that, just make sure that the Shore tel Ip phone are in the right vlan. what does not work anyway? shore Tel IP Phone will not come up? Will not get it's configuration from it's software PBX? Use the smartport configuration on CE500.
  Please rate all posts.

• Problems with SNOM 7XX phones and presence of Lync Edge server

  Hi to all,
  we have this problem, this is the scenario (two Lync 2013 st ed. servers):
  - lync 2013 FE server have internal IP address 172.21.212.XXX with internal gateway 172.21.212.254
  - lync 2013 edge server have two network interface:
  First INTERFACE: 3 IPs in 172.21.30.XXX (Access, web and A/V Edge) for external connection with 172.21.30.254 and internal gateway (IP NAT with public IP)
  Second INTERFACE: IP 172.21.212.XXX for internal connection without gateway
  - snom 7XX (50 phones) are connect to the lync server and all internal call works fine. All phones are in an internal dedicated network 172.21.218.XXX with default gateway 172.21.218.254
  - when making external call with 7XX SNOM phones, the call was routed to Trunk COLT with Lync Mediation server and all works fine.
  - when Lync Mediation server receive a call from our trunk COLT we have this situation:
  All Lync 2013 clients work fine, audio is OK, (network 172.21.216.XXX)
  Polycom CX3000 work fine audio is OK (network 172.21.218.XXX)
  SNOM 710, 720, 760  FW 8.8.2.16 UC series,  phones ring but NO SOUNDS from the phones and after a few seconds "Call failed due to network issues."
  The only way to solve the problem is to disable the connection with Lync Edge server (remove gateway 172.21.30.254)
  BUT this is not the solution because now we have no connection with INTERNET (skype, web conferencing doesen't work without edge gateway)
  Why SNOM phones try to use the EDGE gateway to connect the call? Why doesn't use Lync Mediation server?
  Can you help us to find a solution?
  Thanks
  Aurelio

  Hi,
  Thanks to all for yours support.
  Today, we have done some test (no employee in office today
  J) and we have solved the problems.
  The old implementation have had this configuration:
  - the phone numbers have had a no E.164 format compliant: for all users number, the phone number have had this format TEL:012345XYZW ; EXT=XYZW with the normalization
  rules:
  Starting digits: 01234567
  Length: At least 8 digits
  Digit to remove: 0
  Digit to add: nothing
  Pattern to match ^(01234567\d*)$
  All worked fine with this previous configuration:
  Lync 2010 std with only mediation server function + Lync 2013 std front-end with all the others functions and Lync 2013 std Edge server for external connection with
  Lync client Skype world, BUT we have had disabled in SNOM phones ICE function because if ICE was enabled no voice can we hear from the phones.
  After dismissed Lync 2010 with only a Lync 2013 infrastructure, this configuration don’t permit to use edge server because with ICE enabled or disabled no voice from
  SNOM phones.
  Today we have done this operation:
  Setting in Lync 2013 control panel all number for all users, in E.164 format compliant:
  The phone number now have this format TEL:+39012345XYZW ; EXT=XYZW and we have deleted the previous normalization roles.
  We have added this role for the EXT numbers:
  Name: Routing Interno
  Starting Digits: XY
  Length: Exactly 4 (i.e. XYZW)
  Digit to remove 0
  Digit to add: +39012345
  Pattern to match: ^(XY\d(2))$
  Translation rule: +39012345$1
  Internal extension = checked
  And now all work fine.
  We have solved another problem:
  Lync client 2013 can't find new users:
  all new Lync users are not discovered from Lync 2013 client, probably because this setting is present with Lync 2010:
  PS C:\> Get-CsAddressBookConfiguration
  Identity                  
  : Global
  RunTimeOfDay              
  : 1:30 AM
  KeepDuration              
  : 30
  SynchronizePollingInterval : 00:00:30
  MaxDeltaFileSizePercentage : 20
  UseNormalizationRules     
  : True
  IgnoreGenericRules        
  : False
  EnableFileGeneration      
  : True
  With only Lync 2013 servers we have changed
  IgnoreGenericRules to True
  To set UseNormalizationRules and IgnoreGenericRules to true for Lynk 2013 infrastructure.
  http://technet.microsoft.com/en-us/library/jj205160.aspx
  For us all the problems are SOLVED!
  Aurelio

• Problem when trying to sync with Palm Centro phone and Palm m500

  I just purchased a Palm Centro phone and have had no problem when I try to sync the phone with the Palm software on the computer, however, my wife has an older Palm m500 and all her contacts are on her Palm, but they don't show up on the Palm Desktop software.  Is there something we're doing wrong?  All the dates show up on her desk top and everything in my phone shows up on my desktop, only her contacts are empty.
  Post relates to: Centro (Verizon)

  It is likely that your wife's older device (with Legacy two-word PIMs) is incompatible with the Access Desktop/Hotsync for Verizon Centros as I believe it has only the new Extended (one-word) PIM conduits. If you are running XP you might be able to use a download of 4.1.4e. Suggest you search the Hotsync forum to see if the Centro can use this version of Hotsync (I don't have a Centro).
  Post relates to: Palm TX

• Is there a Calendar App that works with both Blackberry phones and Android phones ?

  I just recently got a Blackberry Z30 phone.  My husband has an LG Optimus G Android phone.  Does anyone know if there is a Calendar App that will work on both phones so that we can send appointments to each other that will load into our respective calendars?  Right now, we each have to enter the events into our individual phones. I love the Blackberry Calendar (RIM) that came preloaded on my phone since you can customize recurrences, e.g. every 3 weeks plus you can have day, week and month views.  I definitely want a calendar with the customizable recurrences feature, which my husband's Android Calendar App does not have. Thanks.
  Solved!
  Go to Solution.

  You Both can Add one email Account on Both Phones and then sync the Calender With Email - This way when one will add a reminder or event it will automatically synced to the other
  Regards Eree - Follow me on Twitter - Facebook - Google+
  For More visit My Blog

• I just purchased new pc and installed I tunes on it and I authorized  this computer to be my main computer and I want to syc it with my I phone, and I pad

  I just purchased a new desk top replacing a former desktop which crashed.  I installed I tunes and authorized the new computer. I would like to sync that with my I phone 5 and my I pad and have all these devices working together as before.  I have I match also.

  Welcome to the Apple Community.
  You will need to set up sync settings again with the new library, this will erase your devices and fill them up again from your library.

• CME 7.1 with SCCP 7940G phones and SIP connection to a VOIP provider - inbound outbound fails

  Here's a quick and dirty diagram of a CME 7.1 configuration. The phone can all call each other but something is not quite right with the SIP provider. The registrar and SIP registration pieces are working but most of the configuration examples that I've seen make me think that the CME router was being used as the edge device to the internet. From my drawing, you can see that is not the case here. My edge device is a Cisco ASA5505 with 9.2.x software running. I might be missing something in the SIP gateway knowledge department. Without diving into the configuration, I'm wondering if SIP messages are failing for calls because of NAT'ing? Trying to do searches has been tricky because I keep running into information that is more about setting up CME for SIP phones or just getting SIP to work between CME and a SIP provider. I have that part working. I'm just a bit unsure about how an SCCP 7940G gets an outbound call or even gets one to come in.
  When I dial from my cell phone to the pilot number, there are no rings, it just goes to the VOIP provider's voice mail. When I try to dial out, I get a fast busy.
  So, is NAT a consideration? Will the SIP gateway set up a call (forward) via the pre-established SIP connection? Yeah, I do sound like a newb.
  If anyone has good information about, let's say, an inbound call and how that traffic flow works.
  Thanks!

  Have you configured your ASA to either NAT the IP address of the CME router or to do port forwarding for port 5060?

• 802.1x with ACS 3.3 and windowsXP

  We are using RADIUS IETF in ACS and EAP MD5.
  My switch is 2950 whith this commands:
  radius-server host a.b.c.d
  radius-server key cisco
  aaa authentication dot1x default group radius
  aaa authorization network default group radius
  dot1x system-auth-control
  int fa 0/1
  dot1x port-control auto
  When we try authenticate appears this error: "CS user unknown" in ACS reports.
  Has somethings that we forget?
  Where I configure the respective VLAN to user when he authenticate?
  Thanks

  I`m using 2950 and Cisco ACS. In my Windows XP, I did only this"Ativar authenticaçao IEEE 802.1x para esta rede -->MD5 Challenge". I create one user in ACS database and assign the following IETF RADIUS attributes to this user:
  [64] Tunnel-Type = VLAN
  [65] Tunnel-Medium-Type = 802
  [81] Tunnel-Private-Group-Id = teste
  At my network icon apears: Authentication Fail
  See some debug message on my switch:
  03:09:14: dot1x-ev:Received AuthStart from Authenticator for supp_info=80D607DC
  03:09:14: dot1x-ev:Managed Timer in sub-block attached as leaf to master
  03:09:14: dot1x-ev:Going to Send Request to AAA Client on RP for id = 0 and length = 25
  03:09:14: dot1x-ev:Got a Request from SP to send it to Radius with id 7
  03:09:14: dot1x-ev:Couldn't Find a process thats already handling the request for this id 0
  03:09:14: dot1x-ev:Inserted the request on to list of pending requests
  03:09:14: dot1x-ev:Found a free slot at slot 0
  03:09:14: dot1x-ev:Found a free slot at slot 0
  03:09:14: dot1x-ev:Request id = 7 and length = 25
  03:09:14: dot1x-ev:The Interface on which we got this AAA Request is FastEthernet0/1
  03:09:14: dot1x-ev:Username is SMSTESTE\joe
  03:09:14: dot1x-ev:MAC Address is 0026.540f.5555
  03:09:14: dot1x-ev:MAC Address copied is 0026.540f.4c43
  03:09:15: dot1x-ev:dot1x_post_message_to_auth_sm: Skipping tx for req_id for default supplicant
  03:09:34: dot1x-err:EAP packet not recvd
  03:09:34: dot1x-ev:going to send to backend on SP, length = 4
  03:09:34: dot1x-ev:Received VLAN is No Vlan
  03:09:34: dot1x-ev:Enqueued the response to BackEnd
  03:09:34: dot1x-ev:Received QUEUE EVENT in response to AAA Request
  03:09:34: dot1x-ev:Dot1x matching request-response found
  03:09:34: dot1x-ev:Length of recv eap packet from radius = 4
  03:09:34: dot1x-ev:Received VLAN Id -1
  03:09:34: dot1x-ev:dot1x_bend_fail_enter:0026.540f.5555: Current ID=0
  Can you help me?
  Thanks,

• New billing with 2 3g phone and regular cell

  So j have 3 phones a 2g a 3g and a reg cell. 2g is 20 bux a month and 3g is 30 bux and 20bux for unlimited text. Now tomorrow I get the 3gs and will keep the 3g active and 2g goes offline to the 3gs upgrade. Now do I pay 30bux for each 3g and 40bux for unlimited text on both?? Or can I get the family 30bux unlimited text and mms and multimedia email from AT&T ? Yes the 3 phones are a family plan.

  Yes get the family text unlimited for 30 dollars , that will cover all three phones on your family plan for text . You will be paying 30 dollars for each iPhone for the data plan they will be covered under the family text so you don't need to get the " text for iPhone " plans ( that's only if you have a single plan or no text on your plan ) . I work with ATT at a retail store .

• How to configure SGE2000P with CISCO 7900 phones and data VLAN

  Hello all
  I am having problem setting up SGE2000P switches to work with my default data VLAN and additional voice VLAN. I am configuring it to pick IP address for phones from voice VLAN which is working fine but when I connect a PC on phone port it is also picking up an IP from Voice VLAN while default VLAN is data with different scope of IP.
  Is there any good discussion or documents out there to help me resolve this issue before I pack these switches and purchase ESW 500 series. I have ESW 500 at another client and they are working fine out of the box but this guy is giving me hard time.
  Any suggestions help will be appreciated
  Mo

  HI Muhammed,
  I suggest you contact the Small Business Support Center for some help:
  http://www.cisco.com/en/US/support/tsd_cisco_small_business_support_center_contacts.html
  Regards,
  Cindy Toy
  Cisco Small Business Community Manager
  for Cisco Small Business Products
  www.cisco.com/go/smallbizsupport
  twitter: CiscoSBsupport

• Issue with new 9300 phone and Vodafone service

  Hi All,
  My name is Amol Supal.
  I am for Mumbai, India.
  I have bought new Blackberry 9300 curve from E Zone Chembur Branch, India.
   I took Vodafone new connection and try to activate Blackberry service.
  But Vodafone service centre  convey me that you phone is not able get register in Blackberry Server.
  Request you all, help me to resolve this issue.

  Hello,
  You will need to work with Vodafone...only they can look "behind the scenes" to see what is going on. Perhaps if they tell you why it is not able to register, that may provide some better hints as to what is going on.
  Good luck and let us know!
  Occam's Razor nearly always applies when troubleshooting technology issues!
  If anyone has been helpful to you, please show your appreciation by clicking the button inside of their post. Please click here and read, along with the threads to which it links, for helpful information to guide you as you proceed. I always recommend that you treat your BlackBerry like any other computing device, including using a regular backup schedule...click here for an article with instructions.
  Join our BBM Channels
  BSCF General Channel
  PIN: C0001B7B4   Display/Scan Bar Code
  Knowledge Base Updates
  PIN: C0005A9AA   Display/Scan Bar Code