EasyManua.ls Logo

Cisco IE 4000

Cisco IE 4000
1066 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
227
Configuring IEEE 802.1x Port-Based Authentication
How to Configure IEEE 802.1x Port-Based Authentication
Configuring the Maximum Number of Authentication Attempts
Configuring Inaccessible Authentication Bypass
6. end Returns to privileged EXEC mode.
7. show authentication interface
interface-id
(Optional) Verifies your entries.
8. copy running-config startup-config (Optional) Saves your entries in the configuration file.
Command Purpose
Command Purpose
1. configure terminal Enters global configuration mode.
2. interface interface-id Specifies the port to be configured, and enters interface configuration
mode.
3. switchport mode access
or
switchport mode private-vlan host
Sets the port to access mode,
or
Configures the Layer 2 port as a private-VLAN host port.
4. authentication port-control auto Enables 802.1x authentication on the port.
5. authentication event fail action
authorize vlan-id
Specifies an active VLAN as an 802.1x restricted VLAN. The range is
1 to 4096.
You can configure any active VLAN except an internal VLAN (routed port),
an RSPAN VLAN, a primary private VLAN, or a voice VLAN as an 802.1x
restricted VLAN.
6. authentication event retry retry count Specifies a number of authentication attempts to allow before a port
moves to the restricted VLAN. The range is 1 to 3, and the default is 3.
7. end Returns to privileged EXEC mode.
8. show authentication interface
interface-id
(Optional) Verifies your entries.
9. copy running-config startup-config (Optional) Saves your entries in the configuration file.
Command Purpose
1. configure terminal Enters global configuration mode.
2. radius-server dead-criteria
time time tries tries
(Optional) Sets the conditions that are used to decide when a RADIUS server is
considered unavailable or dead.
The range for time is from 1 to 120 seconds. The switch dynamically determines the
default seconds value that is 10 to 60 seconds.
The range for tries is from 1 to 100. The switch dynamically determines the default
tries parameter that is 10 to 100.
3. radius-server deadtime
minutes
(Optional) Sets the number of minutes that a RADIUS server is not sent requests.
The range is from 0 to 1440 minutes (24 hours). The default is 0 minutes.

Table of Contents

Other manuals for Cisco IE 4000

Preview: Manual
Manual20 pages
Preview: Hardware Installation Guide
Hardware Installation Guide78 pages

Related product manuals