EasyManuals Logo

Cisco CATALYST 2960 User Manual

Cisco CATALYST 2960
980 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #304 background imageLoading...
Page #304 background image
10-36
Catalyst 2960 and 2960-S Switches Software Configuration Guide, Release 15.0(1)SE
OL-26520-01
Chapter 10 Configuring IEEE 802.1x Port-Based Authentication
Configuring 802.1x Authentication
The session ID includes:
The IP address of the Network Access Device (NAD)
A monotonically increasing unique 32 bit integer
The session start time stamp (a 32 bit integer)
This example shows how the session ID appears in the output of the show authentication command.
The session ID in this example is 160000050000000B288508E5:
Switch# show authentication sessions
Interface MAC Address Method Domain Status Session ID
Fa4/0/4 0000.0000.0203 mab DATA Authz Success 160000050000000B288508E5
This is an example of how the session ID appears in the syslog output. The session ID in this example
is also160000050000000B288508E5:
1w0d: %AUTHMGR-5-START: Starting 'mab' for client (0000.0000.0203) on Interface Fa4/0/4
AuditSessionID 160000050000000B288508E5
1w0d: %MAB-5-SUCCESS: Authentication successful for client (0000.0000.0203) on Interface
Fa4/0/4 AuditSessionID 160000050000000B288508E5
1w0d: %AUTHMGR-7-RESULT: Authentication result 'success' from 'mab' for client
(0000.0000.0203) on Interface Fa4/0/4 AuditSessionID 160000050000000B288508E5
The session ID is used by the NAD, the AAA server, and other report-analyzing applications to identify
the client. The ID appears automatically. No configuration is required.
Configuring 802.1x Authentication
Default 802.1x Authentication Configuration, page 10-37
802.1x Authentication Configuration Guidelines, page 10-38
Configuring 802.1x Readiness Check, page 10-40 (optional)
Configuring Voice Aware 802.1x Security, page 10-41 (optional)
Configuring 802.1x Violation Modes, page 10-42 (optional)
Configuring 802.1x Authentication, page 10-43 (optional)
Configuring the Switch-to-RADIUS-Server Communication, page 10-45 (required)
Configuring the Host Mode, page 10-46 (optional)
Configuring Periodic Re-Authentication, page 10-48 (optional)
Manually Re-Authenticating a Client Connected to a Port, page 10-49 (optional)
Changing the Quiet Period, page 10-49 (optional)
Changing the Switch-to-Client Retransmission Time, page 10-49 (optional)
Setting the Switch-to-Client Frame-Retransmission Number, page 10-50 (optional)
Setting the Re-Authentication Number, page 10-51 (optional)
Configuring 802.1x Accounting, page 10-53 (optional)
Enabling MAC Move, page 10-51 (optional)
Enabling MAC Replace, page 10-52 (optional)
Configuring a Guest VLAN, page 10-54 (optional)

Table of Contents

Other manuals for Cisco CATALYST 2960

Preview: Command Reference Guide
Command Reference Guide800 pages
Preview: Command Reference
Command Reference714 pages
Preview: Hardware Installation Guide
Hardware Installation Guide108 pages
Preview: Getting Started Guide
Getting Started Guide24 pages
Preview: Installation
Installation26 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco CATALYST 2960 and is the answer not in the manual?

Cisco CATALYST 2960 Specifications

General IconGeneral
ManageableYes
StackingNo
ModelCatalyst 2960 Series Switches
Power over Ethernet (PoE)Available on some models (IEEE 802.3af)
VLANs255 active VLANs
FeaturesQoS
Operating Temperature32 to 113°F (0 to 45°C)
Relative Humidity10% to 85% non-condensing
Power ConsumptionVaries by model (30W to 400W)

Related product manuals