Hi,
i have a situation where certain AP don't authenticate with a managed switch on 802.1x port authentication.
I have started to implement 802.1x port authentication in the wired network. I have several wifi-access points, running openwrt 23.05.4.
Generally 802.1x is working well with other computers (using PEAP).
I have 5 switches, 2 of them being Zyxel brand, 3 are Netgear.
I have set up 802.1x authentication according to this article: https://gist.github.com/LupusArgentum/0a03106c0484480376b5878ca4f30761
Three different access points: ZyXEL NWA50AX Pro, AVM FRITZ!Repeater 1200 and GL.iNet GL-AR300M.
My observations regarding 802.1x are as follows.
All three AP work with Zyxel switches.
The GL.iNet works also with the Netgear switches.
Both Zyxel and AVM AP don't work with Netgear switches.
The switches don't even contact the RADIUS server in these cases.
The output from wpa_supplicant is just:
eth0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
eth0: CTRL-EVENT-EAP-STARTED EAP authentication started
eth0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
eth0: CTRL-EVENT-EAP-STARTED EAP authentication started
So i'm assuming some incompatibility with the NICs of both APs?
Or can it be a driver thing? Any ideas what to check?
Thanks for reading.
TH