C613-50631-01 Rev A Command Reference for IE340 Series 2259
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
AUTHENTICATION COMMANDS
AUTH
TWO-STEP ENABLE
auth two-step enable
Overview Use this command to enable a two-step authentication feature on an interface.
When this feature is enabled, the supplicant is authorized in a two-step process. If
authentication succeeds, the supplicant becomes authenticated.
Use this command to apply the two-step authentication method based on 802.1X,
MAC or web authentication.
Use the no variant of this command to disable the two-step authentication feature.
Syntax
auth two-step enable
no auth two-step enable
Default Two step authentication is disabled by default.
Mode Interface Configuration for a static channel, a dynamic (LACP) channel group, or a
switch port; or Authentication Profile mode.
Usage The single step authentication methods (either user or device authentication) have
a potential security risk:
• an unauthorized user can access the network with an authorized device, or
• an authorized user can access the network with an unauthorized device.
Two-step authentication solves this problem by authenticating both the user and
the device. The supplicant will only become authenticated if both these steps are
successful. If the first authentication step fails, then the second step is not started.
Examples To enable the two step authentication feature, use the following commands:
awplus# configure terminal
awplus(config)# interface port1.0.2
awplus(config-if)# auth two-step enable
To disable the two step authentication feature, use the following commands:
awplus# configure terminal
awplus(config)# interface port1.0.2
awplus(config-if)# no auth two-step enable
To Next Page
Loading...
Need help?
General
