Currently, Cisco ISE software is used to manage access. The device configuration is as follows:
tacacs-server host "address1" port 49 timeout 5 key 0 "password"
tacacs-server host "address2" port 49 timeout 5 key 0 "password"
radius-server host "address1" auth-port 1812 acct-port 1813 timeout 5 retransmit 2 nas-id "nas1" key 0 "password"
radius-server host "address2" auth-port 1812 acct-port 1813 timeout 5 retransmit 2 nas-id "nas2" key 0 "password"
aaa authentication login default radius local
aaa authentication login ISE_tacacs tacacs local
aaa authentication enable default radius local
aaa authentication enable ISE_tacacs tacacs local
user name admin privilege admin secret 5 password
enable admin secret 5 password
no service reset-disable
line ssh
login authentication ISE_tacacs
enable authentication ISE_tacacs

interface gigabit Ethernet 1/0/1
switchport general allowed vlan X1 untagged
switchport general allowed vlan X2,X3,X4,X5 tagged
switchport general allowed vlan all
switchport pvid X1
dot1x
dot1x mab
dot1x timeout quiet-period 60
dot1x timeout supp-timeout 10

ISE authorization works when after authorizing the device, the ISE server sends the VLAN assignment the switch hangs (no contact with it, as well as the device does not work in the appropriate VLAN).
Attributes sent from the ISE to the switch:

Tunnel-Medium-Type = 1:6
Tunnel-Private-Group-ID = 1:X3
Tunnel-Type = 1:13