C613-50631-01 Rev A Command Reference for IE340 Series 2189
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
802.1X COMMANDS
DOT
1X PORT-CONTROL
dot1x port-control
Overview This command enables 802.1X port authentication on the interface specified, and
sets the control of the authentication port.
The no variant of this command disables the port authentication on the interface
specified.
Syntax
dot1x port-control {force-unauthorized|force-authorized|auto}
no dot1x port-control
Default 802.1X port control is disabled by default.
Mode Interface Configuration for a static channel, a dynamic (LACP) channel group, or a
switch port; or Authentication Profile mode.
Usage notes Use this command to force a port state.
When port-control is set to auto, the 802.1X authentication feature is executed on
the interface, but only if the aaa authentication dot1x command has been issued.
If you attempt to change the authentication configuration on an interface that has
threat protection quarantine configured, you will see the following error message:
Before changing the interface’s authentication configuration you must either:
• remove the interface’s threat protection configuration, or
• shut down the interface.
Examples To enable port authentication on the interface port1.0.2, use the commands:
awplus# configure terminal
awplus(config)# interface port1.0.2
awplus(config-if)# dot1x port-control auto
Parameter Description
force-unauthorized Force the port state to unauthorized.
Specify this to force a port to always be in an unauthorized
state.
force-authorized Force the port state to authorized.
Specify this to force a port to always be in an authorized
state.
auto Allow the port client to negotiate authentication.
Specify this to enable authentication on the port.
% portx.x.x: Application Proxy quarantine configuration must be
removed before port authentication is changed
To Next Page
Loading...
Need help?
General
