Name: Cisco Catalyst 3750-E
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

10-62

Catalyst 3750-E and 3560-E Switch Software Configuration Guide

OL-9775-08

Chapter 10 Configuring IEEE 802.1x Port-Based Authentication

Configuring 802.1x Authentication

This example shows how to configure a switch as a supplicant:

Switch# configure terminal

Switch(config)# cisp enable

Switch(config)# dot1x credentials test

Switch(config)# username suppswitch

Switch(config)#

password

myswitch

Switch(config)# dot1x supplicant force-multicast

Switch(config)# interface gigabitethernet1/0/1

Switch(config-if)# s

witchport trunk encapsulation dot1q

Switch(config-if)# switchport mode trunk

Switch(config-if)# d

ot1x pae supplicant

Switch(config-if)# d

ot1x credentials test

Switch(config-if)# end

Configuring NEAT with Auto Smartports Macros

You can also use an Auto Smartports user-defined macro instead of the switch VSA to configure the

authenticator switch. For Auto Smartports macros, see Auto Smartports Macros Configuration Guide

and Release Notes for Auto Smartports Macros.

Configuring 802.1x Authentication with Downloadable ACLs and Redirect URLs

In addition to configuring 802.1x authentication on the switch, you need to configure the ACS. For more

information, see the Cisco Secure ACS configuration guides.

Note You must configure a downloadable ACL on the ACS before downloading it to the switch.

After authentication on the port, you can use the sho

w ip access-list privileged EXEC command to

display the downloaded ACLs on the port.

Configuring Downloadable ACLs

The policies take effect after client authentication and the client IP address addition to the IP device

tracking table. The switch then applies the downloadable ACL to the port.

Beginning in privileged EXEC mode:

Command Purpose

Step 1

configure terminal Enter global configuration mode.

Step 2

ip device tracking Sets the ip device tracking table.

Step 3

aaa new-model Enables AAA.

Step 4

aaa authorization network default local

group radius

Sets the authorization method to local. To remove the

authorization method, use the no aaa authorization network

default local group radius command.

Step 5

radius-server vsa send authentication Configure the radius vsa send authentication.

Step 6

interface interface-id Specify the port to be configured, and enter interface

configuration mode.

Other manuals for Cisco Catalyst 3750-E

Getting Started Guide26 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 3750-E and is the answer not in the manual?

Cisco Catalyst 3750-E Specifications

General

Series	Catalyst 3750-E
Switching Capacity	32 Gbps
Stacking Bandwidth	32 Gbps
StackWise Plus	Yes
Layer Support	Layer 3
MAC Address Table Size	12, 000 entries
RAM	256 MB
Flash Memory	64 MB
Memory	256 MB DRAM, 64 MB Flash
Operating Temperature	32 to 113°F (0 to 45°C)
Ports	48 10/100/1000 Ethernet ports
Form Factor	Rack-mountable
Jumbo Frame Support	Yes
Input Voltage	100 to 240 VAC
Storage Temperature	-25 to 70 °C
Relative Humidity	10 to 90% non-condensing