194
Configuring IEEE 802.1x Port-Based Authentication
Information About Configuring IEEE 802.1x Port-Based Authentication
Authentication Manager
Port-Based Authentication Methods
Table 29 on page 194 lists the authentication methods supported in these host modes:
Single host—Only one data or voice host (client) can be authenticated on a port.
Multiple host—Multiple data hosts can be authenticated on the same port. (If a port becomes unauthorized in
multiple-host mode, the switch denies network access to all of the attached clients.)
Multidomain authentication (MDA)—Both a data device and voice device can be authenticated on the same switch
port. The port is divided into a data domain and a voice domain.
Multiple authentication—Multiple hosts can authenticate on the data VLAN. This mode also allows one client on the
VLAN if a voice VLAN is configured.
Table 29 802.1x Features
Authentication Method Mode
Single Host Multiple Host MDA
1
Multiple
Authentication
2
802.1x VLAN assignment
Per-user ACL
Filter-ID attribute
Downloadable ACL
Redirect URL
VLAN assignment
Per-user ACL
Filter-ID attribute
Downloadable ACL
Redirect URL
VLAN assignment
Per-user ACL
Filter-Id attribute
Downloadable ACL
Redirect URL
Per-user ACL
Filter-Id attribute
Downloadable ACL
Redirect URL
MAC authentication bypass VLAN assignment
Per-user ACL
Filter-ID attribute
Downloadable ACL
Redirect URL
VLAN assignment
Per-user ACL
Filter-ID attribute
Downloadable ACL
Redirect URL
VLAN assignment
Per-user ACL
Filter-Id attribute
Downloadable ACL
Redirect URL
Per-user ACL
Filter-Id attribute
Downloadable ACL
Redirect URL
Standalone web authentication Proxy ACL, Filter-Id attribute, downloadable ACL
2
NAC Layer 2 IP validation Filter-Id attribute
Downloadable ACL
Redirect URL
Filter-Id attribute
Downloadable ACL
Redirect URL
Filter-Id attribute
Downloadable ACL
Redirect URL
Filter-Id attribute
3
Downloadable ACL
Redirect URL
Web authentication as fallback
method
3
Proxy ACL
Filter-Id attribute
Downloadable ACL
Proxy ACL
Filter-Id attribute
Downloadable ACL
Proxy ACL
Filter-Id attribute
Downloadable ACL
Proxy ACL
3
Filter-Id attribute
Downloadable ACL
1. MDA = Multidomain authentication.
2. Also referred to as multiauth.
3. For clients that do not support 802.1x authentication.
To Next Page
Loading...
