EasyManua.ls Logo

Cisco Catalyst 2960-X - Page 327

Cisco Catalyst 2960-X
498 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
You enable voice aware 802.1x security by entering the errdisable detect cause security-violation
shutdown vlan global configuration command. You disable voice aware 802.1x security by entering
the no version of this command. This command applies to all 802.1x-configured ports in the switch.
If you do not include the shutdown vlan keywords, the entire port is shut down when
it enters the error-disabled state.
Note
If you use the errdisable recovery cause security-violation global configuration command to configure
error-disabled recovery, the port is automatically re-enabled. If error-disabled recovery is not configured
for the port, you re-enable it by using the shutdown and no shutdown interface configuration commands.
You can re-enable individual VLANs by using the clear errdisable interface interface-id vlan [vlan-list]
privileged EXEC command. If you do not specify a range, all VLANs on the port are enabled.
Beginning in privileged EXEC mode, follow these steps to enable voice aware 802.1x security:
SUMMARY STEPS
1.
configure terminal
2.
errdisable detect cause security-violation shutdown vlan
3.
errdisable recovery cause security-violation
4.
clear errdisable interfaceinterface-id vlan [vlan-list]
5.
Enter the following:
shutdown
no shutdown
6.
end
7.
show errdisable detect
DETAILED STEPS
PurposeCommand or Action
Enter global configuration mode.configure terminal
Step 1
Shut down any VLAN on which a security violation error occurs.errdisable detect cause security-violation
shutdown vlan
Step 2
If the shutdown vlan keywords are not included, the entire
port enters the error-disabled state and shuts down.
Note
Enter global configuration mode.errdisable recovery cause
security-violation
Step 3
(Optional) Reenable individual VLANs that have been error disabled.
clear errdisable interfaceinterface-id vlan
[vlan-list]
Step 4
For interface-id specify the port on which to reenable individual
VLANs.
(Optional) For vlan-list specify a list of VLANs to be re-enabled.
If vlan-list is not specified, all VLANs are re-enabled.
Catalyst 2960-X Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX
OL-29048-01 303
Configuring IEEE 802.1x Port-Based Authentication
Configuring Voice Aware 802.1x Security

Table of Contents

Other manuals for Cisco Catalyst 2960-X

Preview: Hardware Installation Guide
Hardware Installation Guide102 pages
Preview: Command Reference
Command Reference134 pages
Preview: Configuration Guide
Configuration Guide118 pages
Preview: Getting Started Guide
Getting Started Guide26 pages

Related product manuals