This KB article documents an issue seen when 802.1x is configured and enabled on a routed interface.
The issue is being tracked under ID #70586.
On a routed interface configured for 802.1x, clients connected to that interface get silently de-authenticated whenever any other interface flaps (link down/up), leading to all traffic from those users being dropped.
Example of an impacted configuration:
RADIUS settings:
Interface settings:
Through internal ticket #70586, the fix for this issue adds extra checks on the Edge which avoids flushing the MAC addresses after an interface flap and ensures that authenticated users are retained with no impact.
The fix for Issue #70586 is included in the following Edge software releases: