46-51
Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E
OL_28731-01
Chapter 46 Configuring 802.1X Port-Based Authentication
Configuring 802.1X Port-Based Authentication
IPv6 Address: Unknown
IPv4 Address: 7.7.7.19
User-Name: 2C-54-2D-6A-03-44
Status: Authorized
Domain: DATA
Oper host mode: multi-auth
Oper control dir: both
Session timeout: N/A
Common Session ID: 0A4046D50000009C0310AB47
Acct Session ID: 0x000000E7
Handle: 0xF3000061
Current Policy: POLICY_Gi2/9
Server Policies:
URL Redirect ACL: testacl
ACS ACL: xACSACLx-IP-PERMIT_ALL_TRAFFIC-51def075
Filter-ID: 100
Method status list:
Method State
mab Authc Success
The following command displays the contents of the per-user-acl (note that per-user-acl are shown above
as the default port ACL configured on the interface, 151 is the default port ACL in the following
example):
Switch# show access-list
151
deny ip host 20.20.0.3 host 20.20.10.10
10 permit ip any any (57 estimate matches)
The following command displays the number of sessions:
RouterRP# show authentication sessions
Interface MAC Address Method Domain Status Fg Session ID
Gi2/9 aabb.cc00.5600 mab VOICE Auth 0D0102340000000CEDF12589
Session count = 1
Key to Session Events Status Flags:
A - Applying Policy (multi-line status for details)
D - Awaiting Deletion
F - Final Removal in progress
I - Awaiting IIF ID allocation
P - Pushed Session (non-transient state)
R - Removing User Profile (multi-line status for details)
U - Applying User Profile (multi-line status for details)
X - Unknown Blocker
The following command displays authentication sessions that contains the per-user-acl:
S2049# show authentication sessions int gi 2/9 det
Interface: GigabitEthernet2/9
MAC Address: ccdd.aabb.0001
IPv6 Address: Unknown
IPv4 Address: 6.6.65.66
User-Name: ccddaabb0001
Status: Authorized
Domain: DATA
Oper host mode: multi-auth
To Next Page
Loading...
Need help?
General
