Announcement

Collapse

Welcome to ShoreTelForums.com

Welcome to ShoreTelForums.com!

This site was created as a place to share stories, tips, and troubleshooting help with ShoreTel/Mitel systems. ShoreTel/Mitel is obviously the MOST exciting VoiP platform on the market right now, and we realized there was no centralized place to discuss this platform, but now there is. Please feel free to join and share your experiences.

Please Note: This site IS NOT owned, funded, or managed by ShoreTel/Mitel, Inc. although you may find ShoreTel/Mitel employees sharing there experiences and expertise. If you would like more information on ShoreTel/Mitel systems, contact BTX at [email protected]

As always please support the advertisers that help support our site.

Thank You,
BTX
See more
See less
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    802.1X and Shoretel

    Anyone setup a ShoreTel system in a 802.1X environment? How do the phones handle the authentication and do they pass the authentication through the second switch port without issues? I'm assuming you have to authenticate the phones via the MAC, maybe? What about authenticating through V-LANs?

    Any info would be great. I have a feeling we are all going to run into this in the future.
    Tags: None
  • #2
    You'll have a solution in the future

    Many NAC solutions can authenticate based upon MAC prefix.

    Comment

    • #3
      So 802.1x doesn't do any MAC base authentication? I didn't know that, I just assumed.
      ok, well thats a kick in the stones.

      Comment

      • #4
        802.1x with Cisco

        Is there any documentation on configuring shortel phones to work with Cisco 802.1x authentication. It doesn't seem to enjoy the Voice Vlan tag on the interface configuration?????

        Comment

        • #5
          Originally posted by mike.elam View Post
          Is there any documentation on configuring shortel phones to work with Cisco 802.1x authentication. It doesn't seem to enjoy the Voice Vlan tag on the interface configuration?????
          You can use 802.1x and Shoretel phones on a Cisco switch, but it is a little bit tricky to setup. What you need to do is setup multiple authentications on the port. You can place a rule within the Radius server that your switch talks to allow the mac addresses of the phones. With any other mac addresses, it will peform the authentication. (thus multiple times) The tricky part is, depending on your configuration, it may or may not shut off the phone if the client fails authentication.

          Google "cisco 802.1x multi-auth"

          Cisco has supported 802.1x multi-auth on the 3560's for about a year. It was introduced into the 4500 and 6500's about 3 months ago, so you will need a recent IOS to make it work.

          Networking, Cloud, and Cybersecurity Solutions
          http://www.cisco.com/application/pdf/paws/98523/8021x-cat-layer3.pdf
          Cisco delivers innovative software-defined networking, cloud, and security solutions to help transform your business, empowering an inclusive future for all.


          IEEE 802.1x Multi-Domain Authentication on Cisco Catalyst Layer 3 Fixed Configuration Switches Configuration Example - Cisco Systems

          Good Luck!

          Comment

          Previous template Next
          Working...
          X
          😀
          🥰
          🤢
          😎
          😡
          👍
          👎