Guest

Preview Tool

Cisco Bug: CSCus24812 - C2960 "eap-tls, eap-peap, eap-leap" methods arent packaged for EAP-Prof

Last Modified

Mar 20, 2018

Products (1)

  • Cisco Catalyst 2960-S Series Switches

Known Affected Releases

15.2(1.2) 15.2(1.3) 15.2(2.1)

Description (partial)

Symptom:
PEAP & LEAP options to be configured for te EAP_Profile are not avilable:

cat2960(config-eap-profile)#method ?
  fast      EAP-FAST method allowed
  gtc       EAP-GTC method allowed
  md5       EAP-MD5 method allowed
  mschapv2  EAP-MSCHAPV2 method allowed

Conditions:
C2960C Software (C2960c405-UNIVERSALK9-M), Version 15.2(1)E2, RELEASE SOFTWARE (fc1)

cat2960(config)#eap profile EAPTEST
cat2960(config-eap-profile)#method ?
  fast      EAP-FAST method allowed
  gtc       EAP-GTC method allowed
  md5       EAP-MD5 method allowed
  mschapv2  EAP-MSCHAPV2 method allowed

cat2960#show subsys | inc peap

cat2960#show subsys | inc leap

cat2960#show subsys | inc fast
stp_switch_ufast                   Library     1.000.000     
hulc_stp_dufast_shim               Driver      1.000.001     
eap_fast                           Protocol    1.001.001     
ipfast_cache                       Protocol    1.000.001     
stp_fast_ext                       Protocol    1.000.000     
stp_fast_debug_ui                  Management  1.000.000     
stp_dufast_ui                      Management  1.000.001     
stp_fast_cfg_ui                    Management  1.000.000     
stp_fast_ui                        Management  1.001.001     
stp_dufast                         Management  1.001.001     
eap_fast_registry                  Registry    1.000.001     
eap_fast_keystore_registry         Registry    1.000.001     
stp_dufast_registry                Registry    1.000.001     
fasthello_registry                 Registry    1.000.001     
fastswitch                         Registry    1.000.001

Related Community Discussions

Authenticating switch outside of wirecloset using NPS (dot1x pae supplicant)
Hi, We have purchased a few 2960CPD-8TT-L's which we want to connect to our other 2960 24 and 48-port switches. We have implemented 802.1x for wireless and wired clients. Our last step is to replace a few remaining desktopswitches. We do not have ISE and use Windows Network Policy Server (NPS) to authenticate clients using RADIUS. This all works well for clients using PEAP+Secure Password  using EAP-MSCHAP v2 (for username-based autentication) and "Smart Card or other certificate" for computerbased ...
Latest activity: Dec 25, 2014
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.