To Next Page

To Previous Page

HAPTER

| Authentication Commands

802.1X Port Authentication

– 645 –

802.1X PORT AUTHENTICATION

The switch supports IEEE 802.1X (dot1x) port-based access control that

prevents unauthorized access to the network by requiring users to first

submit credentials for authentication. Client authentication is controlled

centrally by a RADIUS server using EAP (Extensible Authentication

Protocol).

Table 75: 802.1X Port Authentication Commands

Command Function Mode

General Commands

dot1x default Resets all dot1x parameters to their default values GC

dot1x eapol-pass-through Passes EAPOL frames to all ports in STP forwarding

state when dot1x is globally disabled

dot1x system-auth-control Enables dot1x globally on the switch. GC

Authenticator Commands

dot1x intrusion-action Sets the port response to intrusion when

authentication fails

dot1x max-req Sets the maximum number of times that the switch

retransmits an EAP request/identity packet to the

client before it times out the authentication session

dot1x operation-mode Allows single or multiple hosts on an dot1x port IC

dot1x port-control Sets dot1x mode for a port interface IC

dot1x re-authentication Enables re-authentication for all ports IC

dot1x timeout quiet-period Sets the time that a switch port waits after the Max

Request Count has been exceeded before attempting

to acquire a new client

dot1x timeout

re-authperiod

Sets the time period after which a connected client

must be re-authenticated

dot1x timeout supp-timeout Sets the interval for a supplicant to respond IC

dot1x timeout tx-period Sets the time period during an authentication session

that the switch waits before re-transmitting an EAP

packet

dot1x re-authenticate Forces re-authentication on specific ports PE

Supplicant Commands

dot1x identity profile Configures dot1x supplicant user name and password GC

dot1x max-start Sets the maximum number of times that a port

supplicant will send an EAP start frame to the client

dot1x pae supplicant Enables dot1x supplicant mode on an interface IC

dot1x timeout auth-period Sets the time that a supplicant port waits for a

response from the authenticator

dot1x timeout held-period Sets the time a port waits after the maximum start

count has been exceeded before attempting to find

another authenticator

Brand	Edge-Core
Model	ECS3510-26P
Category	Switch
Language	English

Edge-Core ECS3510-26P User Manual

Table of Contents

Other manuals for Edge-Core ECS3510-26P

Questions and Answers:

Edge-Core ECS3510-26P Specifications

Related product manuals