Release Notes for Cisco Catalyst Blade Switch 3120 for HP, Cisco IOS Release 12.2(53)SE and Later
Table Of Contents
- Release Notes for Cisco Catalyst Blade Switch 3120 for HP, Cisco IOS Release 12.2(53)SE and Later
- Contents
- System Requirements
- Upgrading the Switch Software
- Installation Notes
- New Features
- Minimum Cisco IOS Release for Major Features
- Limitations and Restrictions
- Important Notes
- Open Caveats
- Resolved Caveats
- Documentation Updates
- Updates to the Software Documentation
- Update to the “Configuring IP Unicast Routing” Chapter
- User Interface for VRF-Aware RADIUS
- Update to the “Configuring IEEE 802.1x Port-Based Authentication” Chapter
- Update to the “Configuring IEEE 802.1x Port-Based Authentication” Chapter
- Update to the “Configuring Embedded Event Manager” Chapter
- Update to the “Configuring MSTP” Chapter
- Updates to the Switch Getting Started Guide
- Updates for the System Message Guide
- Updates to the Software Documentation
- Related Documentation
- Obtaining Documentation and Submitting a Service Request
24
Release Notes for Cisco Catalyst Blade Switch 3120 for HP, Cisco IOS Release 12.2(53)SE and Later
OL-21144-02
Documentation Updates
Updates to the Software Documentation
Update to the “Configuring IP Unicast Routing” Chapter
This section was added to the “Configuring IP Unicast Routing” chapter:
User Interface for VRF-Aware RADIUS
To configure VRF-Aware RADIUS, you must first enable AAA on a RADIUS server. This release
supports the ip vrf forwarding vrf-name server-group configuration and the ip radius source-interface
global configuration commands, as described in the Per VRF AAA Feature Guide at this URL:
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftvrfaaa.html
The switch does not support ISL trunking.
Update to the “Configuring IEEE 802.1x Port-Based Authentication” Chapter
Common Session ID
Authentication manager uses a single session ID (referred to as a common session ID) for a client no
matter which authentication method is used. This ID is used for all reporting purposes, such as the show
commands and MIBs. The session ID appears with all per-session syslog messages.
The session ID includes:
• The IP address of the Network Access Device (NAD)
• A monotonically increasing unique 32 bit integer
• The session start time stamp (a 32 bit integer)
This example shows how the session ID appears in the output of the show authentication command.
The session ID in this example is 160000050000000B288508E5:
Switch# show authentication sessions
Interface MAC Address Method Domain Status Session ID
Fa4/0/4 0000.0000.0203 mab DATA Authz Success 160000050000000B288508E5
This is an example of how the session ID appears in the syslog output. The session ID in this example
is also160000050000000B288508E5:
1w0d: %AUTHMGR-5-START: Starting 'mab' for client (0000.0000.0203) on Interface Fa4/0/4
AuditSessionID 160000050000000B288508E5
1w0d: %MAB-5-SUCCESS: Authentication successful for client (0000.0000.0203) on Interface
Fa4/0/4 AuditSessionID 160000050000000B288508E5
1w0d: %AUTHMGR-7-RESULT: Authentication result 'success' from 'mab' for client
(0000.0000.0203) on Interface Fa4/0/4 AuditSessionID 160000050000000B288508E5
The session ID is used by the NAD, the AAA server, and other report-analyzing applications to identify
the client. The ID appears automatically. No configuration is required.