|
Posted by on October 20, 2007, 6:43 am
Please log in for more thread options
Hi Everyone,
I have been task with implementing a Nortel VOIP solution in a 802.1x
Cisco environment.
The equipment I have is as follows:
Nortel 1140E IP Phone connected to Cisco C3750-PoE edge switches
running 12.2.37SE1 as the IOS.
RADIUS Server authenticating worstations on PC certificate and via
user's network credentials. Also we are using Dynamic VLANS.
I have managed to get the Nortel IP phone to work fine without the
802.1x, but I haven't been so lucky with 802.1x.
Cisco has provided me with a switchport config and RADIUS VSA
attributes which I have implemented but I still cannot get the phone
to authenticate. It says "Starting DHCP" and sits at that prompt
forever. While the phone boots up the PC authenticates briefly but
then I get "limited connectivity/authentication fail" on the PC as
well.
I have created an account on the RADIUS server and set it to the Voice
VLAN. Configured the phone with EAP enabeled option and entered that
login into the phone. I have even specified the Data & Voice VLAN on
the phone's config (which are the same as on the switchport).
Now after all that dribble....Has any one implemented something like
this before, if yes, what config did you use? I can supply my config
from Cisco on request.
Secondly, how can I troubleshoot the connectivity on the Nortel 1140E
IP Phone? I want to to be able to trace every event (EAPOL,
authentication attempts, DHCP requests, etc).
Many thanks in advance!!!!
|
|
Posted by Dophi on October 24, 2007, 6:29 am
Please log in for more thread options
On Oct 20, 6:43 pm, talo...@hotmail.com wrote:
> Hi Everyone,
>
> I have been task with implementing a Nortel VOIP solution in a 802.1x
> Cisco environment.
>
> The equipment I have is as follows:
> Nortel 1140E IP Phone connected to Cisco C3750-PoE edge switches
> running 12.2.37SE1 as the IOS.
> RADIUS Server authenticating worstations on PC certificate and via
> user's network credentials. Also we are using Dynamic VLANS.
>
> I have managed to get the Nortel IP phone to work fine without the
> 802.1x, but I haven't been so lucky with 802.1x.
>
> Cisco has provided me with a switchport config and RADIUS VSA
> attributes which I have implemented but I still cannot get the phone
> to authenticate. It says "Starting DHCP" and sits at that prompt
> forever. While the phone boots up the PC authenticates briefly but
> then I get "limited connectivity/authentication fail" on the PC as
> well.
>
> I have created an account on the RADIUS server and set it to the Voice
> VLAN. Configured the phone with EAP enabeled option and entered that
> login into the phone. I have even specified the Data & Voice VLAN on
> the phone's config (which are the same as on the switchport).
>
> Now after all that dribble....Has any one implemented something like
> this before, if yes, what config did you use? I can supply my config
> from Cisco on request.
>
> Secondly, how can I troubleshoot the connectivity on the Nortel 1140E
> IP Phone? I want to to be able to trace every event (EAPOL,
> authentication attempts, DHCP requests, etc.)
>
> Many thanks in advance!!!!
For troubleshooting, you can use port-mirror on Cisco switch or check
the event logs on RADIUS server.
Regards
|
| Similar Threads | Posted |
| Nortel 1140E IP phone in a 802.1x Cisco environment | October 20, 2007, 6:43 am |
| Nortel PBX - Cisco phone | July 10, 2008, 4:08 am |
| Loadbalancer & URL redirect in high performance web environment | June 17, 2006, 2:51 pm |
| Nortel Cisco Connectivity Issue | April 8, 2006, 9:01 am |
| Cisco Etherchannel and Nortel Trunking | September 27, 2006, 6:20 am |
| iBGP from Cisco 7200 to Nortel 8600 | April 6, 2006, 4:34 am |
| To connect Nortel Passport with SMLT to Cisco catalyst 3560 | May 16, 2006, 8:35 pm |
| New downloads www.cert-start.com - Actualtests Cisco Nortel Linux and Sun | December 10, 2005, 4:54 pm |
| Pilot - Nortel VoIP phones connecting to Cisco 6500 | May 13, 2008, 11:25 am |
| I am BUYING Cisco, Lucent, Nortel, Microsoft & more. I also buy Extreme, Foundry, Brocade and more. | September 20, 2008, 3:04 pm |
| WTB: I NEED TO BUY LIST OF TELECOM, NETWORKING, SOFTWARE, CISCO, MICROSOFT, NORTEL, LUCENT, ALCATEL & MORE | April 10, 2008, 8:05 pm |
| WTB: I NEED TO BUY LIST OF TELECOM, NETWORKING, SOFTWARE, CISCO, MICROSOFT, NORTEL, LUCENT, ALCATEL & MORE | April 18, 2008, 8:35 pm |
| WTB: I NEED TO BUY LIST OF TELECOM, NETWORKING, SOFTWARE, CISCO, MICROSOFT, NORTEL, LUCENT, ALCATEL & MORE | May 6, 2008, 2:04 am |
| Site to Site VPN routing - Cisco 1841 to Nortel VPN Router 1010 | September 21, 2007, 1:46 pm |
| WE BUY Nortel, Cisco, Juniper, Alcatel, Lucent, Foundry, Extreme, F5 Big IP, Tellabs, Microsoft, Adobe and more.. We buy Telecom, Networking and Software. Look below at my current want to buys and email me with any offers that you have. | March 31, 2007, 8:36 am |
Nortel 1140E IP phone in a 802.1x Cisco environment
Yahoo!
Google
Windows Live
del.icio.us
digg
Netscape
>
> I have been task with implementing a Nortel VOIP solution in a 802.1x
> Cisco environment.
>
> The equipment I have is as follows:
> Nortel 1140E IP Phone connected to Cisco C3750-PoE edge switches
> running 12.2.37SE1 as the IOS.
> RADIUS Server authenticating worstations on PC certificate and via
> user's network credentials. Also we are using Dynamic VLANS.
>
> I have managed to get the Nortel IP phone to work fine without the
> 802.1x, but I haven't been so lucky with 802.1x.
>
> Cisco has provided me with a switchport config and RADIUS VSA
> attributes which I have implemented but I still cannot get the phone
> to authenticate. It says "Starting DHCP" and sits at that prompt
> forever. While the phone boots up the PC authenticates briefly but
> then I get "limited connectivity/authentication fail" on the PC as
> well.
>
> I have created an account on the RADIUS server and set it to the Voice
> VLAN. Configured the phone with EAP enabeled option and entered that
> login into the phone. I have even specified the Data & Voice VLAN on
> the phone's config (which are the same as on the switchport).
>
> Now after all that dribble....Has any one implemented something like
> this before, if yes, what config did you use? I can supply my config
> from Cisco on request.
>
> Secondly, how can I troubleshoot the connectivity on the Nortel 1140E
> IP Phone? I want to to be able to trace every event (EAPOL,
> authentication attempts, DHCP requests, etc.)
>
> Many thanks in advance!!!!