EasyManuals Logo

Cisco Catalyst 2960 Series User Manual

Cisco Catalyst 2960 Series
2288 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1467 background imageLoading...
Page #1467 background image
PurposeCommand or Action
ignore-acct-portDisable testing on the RADIUS-server accounting
port.
ignore-auth-portDisable testing on the RADIUS-server
authentication port.
For keystring, specify the authentication and encryption key used
between the switch and the RADIUS daemon running on the
RADIUS server. The key is a text string that must match the
encryption key used on the RADIUS server.
Always configure the key as the last item in the
radius-server host command syntax because leading spaces
are ignored, but spaces within and at the end of the key are
used. If you use spaces in the key, do not enclose the key
in quotation marks unless the quotation marks are part of
the key. This key must match the encryption used on the
RADIUS daemon.
Note
You can also configure the authentication and encryption key by using
theradius-server key {0string | 7string | string} global configuration
command.
(Optional) Configure the parameters for inaccessible authentication bypass:dot1x critical {eapol | recovery delay
milliseconds}
Step 6
eapolSpecify that the switch sends an EAPOL-Success message
when the switch successfully authenticates the critical port.
Example:
Switch(config)# dot1x critical eapol
recovery delaymillisecondsSet the recovery delay period during
which the switch waits to re-initialize a critical port when a RADIUS
(config)# dot1x critical recovery delay
2000
server that was unavailable becomes available. The range is from 1
to 10000 milliseconds. The default is 1000 milliseconds (a port can
be re-initialized every second).
Specify the port to be configured, and enter interface configuration mode.
interface interface-id
Example:
Switch(config)# interface
gigabitethernet 1/0/1
Step 7
Use these keywords to move hosts on the port if the RADIUS server is
unreachable:
authentication event server dead action
{authorize | reinitialize} vlan vlan-id]
Step 8
Example:
Switch(config-if)# authentication event
authorizeMove any new hosts trying to authenticate to the
user-specified critical VLAN.
reinitializeMove all authorized hosts on the port to the
user-specified critical VLAN.
server dead action
reinitialicze vlan 20
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
1385
How to Configure 802.1x Port-Based Authentication

Table of Contents

Other manuals for Cisco Catalyst 2960 Series

Preview: Datasheet
Datasheet21 pages
Preview: Brochure & Specs
Brochure & Specs10 pages
Preview: Product Bulletin
Product Bulletin5 pages
Preview: Specifications
Specifications2 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco Catalyst 2960 Series and is the answer not in the manual?

Cisco Catalyst 2960 Series Specifications

General IconGeneral
LayerLayer 2
Power over Ethernet (PoE)Available on some models
RAM128 MB
Flash Memory32 MB
MAC Address Table Size8000
Operating Temperature0°C to 45°C (32 to 113°F)
Ports24 or 48 x 10/100/1000

Related product manuals