The cisco-av-pairs must be configured as device-traffic-class=switch on the ACS, which sets the interface
as a trunk after the supplicant is successfully authenticated.
Note
Beginning in privileged EXEC mode, follow these steps to configure a switch as an authenticator:
SUMMARY STEPS
1.
configure terminal
2.
cisp enable
3.
interface interface-id
4.
switchport mode access
5.
authentication port-control auto
6.
dot1x pae authenticator
7.
spanning-tree portfast
8.
end
9.
show running-config interface interface-id
10.
copy running-config startup-config
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
Switch# configure terminal
Step 1
Enables CISP.cisp enable
Example:
Switch(config)# cisp enable
Step 2
Specifies the port to be configured, and enter
interface configuration mode.
interface interface-id
Example:
Switch(config)# interface gigabitethernet2/0/1
Step 3
Sets the port mode to access.switchport mode access
Example:
Switch(config-if)# switchport mode access
Step 4
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
1396
How to Configure 802.1x Port-Based Authentication
To Next Page
Loading...
Need help?
General
