D-Link DGS-1510 Series

To Next Page

To Previous Page

DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide

422

authentication host-mode {multi-host | multi-auth [vlan VLAN-ID [, | -]]}

no authentication host-mode [multi-auth vlan VLAN-ID [, | -]]

Parameters

multi-host

Specifies the port to operate in the multi-host mode. Only a single

authentication is performed and all hosts connected to the port are

allowed.

multi-auth

Specifies the port to operate in the multi-auth mode. Each host will

be authenticated individually.

vlan VLAN-ID

(Optional) Specifies the authentication VLAN(s). This is useful when

different VLANs on the Switch have different authentication

requirements. Using the no command, all the VLANs are removed If

not specified. This means that it does not care which VLAN the

client comes from, the client will be authenticated if the client's MAC

address (regardless of the VLAN) is not authenticated. After the

client is authenticated, the client will not be re-authenticated when

received from other VLANs. This option is useful for trunk ports to

do per-VLAN authentication control. When a port’s authentication

mode is changed to multi-host, the previous authentication VLAN(s)

on this port will be cleared.

Default

By default, multi-auth is used.

Command Mode

Interface Configuration Mode.

Command Default Level

Level: 12.

Usage Guideline

If the port is operated in the multi-host mode, and if one of the hosts is authenticated, then all other

hosts are allowed to access the port. According to 802.1X authentication, if the re-authentication fails

or the authenticated user logs off, the port will be blocked for a quiet period. The port restores the

processing of EAPOL packets after the quiet period.

If the port is operated in the multi-auth mode, then each host needs to be authenticated individually

to access the port. A host is represented by its MAC address. Only the authorized host is allowed to

access.

Example

This example shows how to specify the Ethernet port 1/0/1 to operate in the multi-host mode.

Switch# configure terminal

Switch(config)# interface eth1/0/1

Switch(config-if)# authentication host-mode multi-host

Switch(config-if)#

50-3 authentication periodic

This command is used to enable periodic re-authentication for a port. Use the no form of this

command to disable periodic re-authentication.

authentication periodic

no authentication periodic

Main Page

D-Link DGS-1510 Series - Page 425

Table of Contents

Other manuals for D-Link DGS-1510 Series

Related product manuals