![[Zobrazit/Skrýt nabídky vlevo]](img/icons/oleftcol.png "[Zobrazit/Skrýt nabídky vlevo]"){kind=icon}
![[Zobrazit/Skrýt nabídky vpravo]](img/icons/orightcol.png "[Zobrazit/Skrýt nabídky vpravo]"){kind=icon}
EAP auth debugging
Show port-access status:
sw2-serverovna.alcoma.cz# show port-access authenticator
Port Access Authenticator Status
Port-access authenticator activated [No] : Yes
Allow RADIUS-assigned dynamic (GVRP) VLANs [No] : No
Auths/ Unauth Untagged Tagged % In RADIUS Cntrl
Port Guests Clients VLAN VLANs Port COS Limit ACL Dir Port Mode
---- ------- ------- -------- ------ --------- ----- ------ ----- ----------
1 0/0 0 None No No No No both 1000FDx
2 0/1 0 3501 No No No No both 1000FDx
3 0/1 0 3501 No No No No both 1000FDx
4 0/0 0 None No No No No both 1000FDx
5 0/1 0 3501 No No No No both 1000FDx
6 0/0 0 3501 No No No No both 1000FDx
7 0/0 0 None No No No No both 1000FDx
8 0/0 0 None No No No No both 1000FDx
Auths = successfuly authenticated
Guests = client without auth request
Unauth cliens = auth req. failed OR guests on the same port as already authenticated client (not allowed to mix auth and guests)
How to log debug messages from switch:
Turn on debug for desired feature and set logging to log server by these commands:
sw5-suteren.alcoma.cz# debug security port-access authenticator sw5-suteren.alcoma.cz# debug security port-access supplicant sw5-suteren.alcoma.cz# debug security radius-server sw5-suteren.alcoma.cz# debug destination logging
and turn off by:
sw5-suteren.alcoma.cz# no debug all
![[přepni]](javascript:icntoggle('mod-Application_Menuleft1','module.png'); "[přepni]"){kind=small}