EasyManuals Logo

Cisco WS-C3560-48PS-S User Manual

Cisco WS-C3560-48PS-S
892 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #214 background imageLoading...
Page #214 background image
9-18
Catalyst 3560 Switch Software Configuration Guide
78-16156-01
Chapter9 Configuring 802.1X Port-Based Authentication
Configuring 802.1X Authentication
Configuring a Guest VLAN
When you configure a guest VLAN, clients that are not 802.1X-capable are put into the guest VLAN
when the server does not receive a response to its EAPOL request/identity frame. Clients that are
802.1X-capable but fail authentication are not granted access to the network. The switch supports guest
VLANs in single-host or multiple-hosts mode.
Beginning in privileged EXEC mode, follow these steps to configure a guest VLAN. This procedure is
optional.
To disable and remove the guest VLAN, use the no dot1x guest-vlan interface configuration command.
The port returns to the unauthorized state.
This example shows how to enable VLAN 2 as an 802.1X guest VLAN:
Switch(config)# interface gigabitethernet0/2
Switch(config-if)# dot1x guest-vlan 2
Resetting the 802.1X Configuration to the Default Values
Beginning in privileged EXEC mode, follow these steps to reset the 802.1X configuration to the default
values. This procedure is optional.
Command Purpose
Step 1
configure terminal Enter global configuration mode.
Step 2
interface interface-id Specify the port to be configured, and enter interface configuration mode.
For the supported port types, see the “802.1X Configuration Guidelines”
section on page 9-11.
Step 3
dot1x guest-vlan vlan-id Specify an active VLAN as an 802.1X guest VLAN. The range is 1 to
4094.
You can configure any active VLAN except an internal VLAN (routed
port), an RSPAN VLAN, or a voice VLAN as an 802.1X guest VLAN.
Step 4
end Return to privileged EXEC mode.
Step 5
show dot1x interface interface-id Verify your entries.
Step 6
copy running-config startup-config (Optional) Save your entries in the configuration file.
Command Purpose
Step 1
configure terminal Enter global configuration mode.
Step 2
interface interface-id Enter interface configuration mode, and specify the port to be configured.
Step 3
dot1x default Reset the configurable 802.1X parameters to the default values.
Step 4
end Return to privileged EXEC mode.
Step 5
show dot1x interface interface-id Verify your entries.
Step 6
copy running-config startup-config (Optional) Save your entries in the configuration file.

Table of Contents

Other manuals for Cisco WS-C3560-48PS-S

Preview: Hardware Installation Guide
Hardware Installation Guide120 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco WS-C3560-48PS-S and is the answer not in the manual?

Cisco WS-C3560-48PS-S Specifications

General IconGeneral
BrandCisco
ModelWS-C3560-48PS-S
CategorySwitch
LanguageEnglish

Related product manuals