I may have said things wrong. I am using 802.1x authentication on the switch. It works fine, and users get authenticated. I can see that both on the switch side and in the radius logs. When I try to add macsec on the interfaces that already use 802.1x authentication, the clients stop gaining network access. On the switch side I can see the user trying to authenticate. If I check the radius logs, I see that they get authenticated. So the radius gives the OK to the client, but somehow the client does not get it. I checked the packets with wireshark, and I get a failure after the EAP-TLS is being sent to the client.
Regards,
Alexandru