KB.15.15

ManualsBrandsHP ManualsNetwork HardwareHP 5406R-8XGT/8SFP+ (No PSU) v2 zl2 Switch

351

352

353

354

355

356

357

358

359

360

When the 802.1X client's session on port A2 ends, the port removes the temporary untagged

VLAN membership. The static VLAN (VLAN 33) that is "permanently" configured as untagged on

the port becomes available again. Therefore, when the RADIUS-authenticated 802.1X session on

port A2 ends, VLAN 22 access on port A2 also ends, and the untagged VLAN 33 access on port

A2 is restored as shown in Figure 256 (page 356).

Figure 256 The active configuration for VLAN 33 restores port A2 after the 802.1X session ends

Messages related to 802.1X operation

Table 36 802.1X Operating Messages

MeaningMessage

The ports in the port list have not been enabled as 802.1X authenticators.

Use this command to enable the ports as authenticators:

Port port-list is not an

authenticator.

HP Switch(config)# aaa port-access authenticator e 10

Occurs when there is an attempt to change the supplicant configuration

on a port that is not currently enabled as a supplicant. Enable the port as

Port port-list is not a

supplicant.

a supplicant and then make the desired supplicant configuration changes.

See “Enabling a Switch Port as a Supplicant.” (page 479).

This message can appear if you configured the switch for EAP-RADIUS or

CHAP-RADIUS authentication, but the switch does not receive a response

No server(s) responding.

from a RADIUS server. Ensure that the switch is configured to access at

least one RADIUS server. Use show radius. If you also see the message

Can't reach RADIUS server < x.x.x.x >, try the suggestions listed for that

message.

To maintain security, LACP is not allowed on ports configured for 802.1X

authenticator operation. If you configure port security on a port on which

LACP has been disabled on

802.1X port(s).

LACP (active or passive) is configured, the switch removes the LACP

Error configuring port

port-number : LACP and 802.1X

cannot be run together.

configuration, displays a notice that LACP is disabled on the port(s), and

enables 802.1X on that port.

Also, the switch will not allow you to configure LACP on a port on which

port access (802.1X) is enabled.

356 IPv4 Access Control Lists (ACLs)