Verifying the DAI Configuration 211
CHAPTER 15
Configuring IEEE 802.1x Port-Based Authentication 213
Finding Feature Information 213
Information About 802.1x Port-Based Authentication 213
Port-Based Authentication Process 214
Port-Based Authentication Initiation and Message Exchange 216
Authentication Manager for Port-Based Authentication 217
Port-Based Authentication Methods 218
Per-User ACLs and Filter-Ids 219
Port-Based Authentication Manager CLI Commands 219
Ports in Authorized and Unauthorized States 221
Port-Based Authentication and Switch Stacks 222
802.1x Host Mode 222
802.1x Multiple Authentication Mode 223
MAC Move 223
MAC Replace 224
802.1x Accounting 224
802.1x Accounting Attribute-Value Pairs 225
802.1x Readiness Check 226
Switch-to-RADIUS-Server Communication 226
802.1x Authentication with VLAN Assignment 227
802.1x Authentication with Per-User ACLs 228
802.1x Authentication with Downloadable ACLs and Redirect URLs 229
Cisco Secure ACS and Attribute-Value Pairs for the Redirect URL 231
Cisco Secure ACS and Attribute-Value Pairs for Downloadable ACLs 231
VLAN ID-based MAC Authentication 232
802.1x Authentication with Guest VLAN 232
802.1x Authentication with Restricted VLAN 233
802.1x Authentication with Inaccessible Authentication Bypass 234
Inaccessible Authentication Bypass Support on Multiple-Authentication Ports 234
Inaccessible Authentication Bypass Authentication Results 234
Inaccessible Authentication Bypass Feature Interactions 235
802.1x User Distribution 236
802.1x User Distribution Configuration Guidelines 236
Catalyst 2960-XR Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX1
xii OL-29434-01
Contents
To Next Page
Loading...
