C
HAPTER
23
| Authentication Commands
802.1X Port Authentication
– 850 –
dot1x max-start This command sets the maximum number of times that a port supplicant
will send an EAP start frame to the client before assuming that the client is
802.1X unaware. Use the no form to restore the default value.
SYNTAX
dot1x max-start count
no dot1x max-start
count - Specifies the maximum number of EAP start frames.
(Range: 1-65535)
DEFAULT
3
COMMAND MODE
Interface Configuration
EXAMPLE
Console(config)#interface eth 1/2
Console(config-if)#dot1x max-start 10
Console(config-if)#
dot1x pae
supplicant
This command enables dot1x supplicant mode on a port. Use the no form
to disable dot1x supplicant mode on a port.
SYNTAX
[no] dot1x pae supplicant
DEFAULT
Disabled
COMMAND MODE
Interface Configuration
COMMAND USAGE
◆ When devices attached to a port must submit requests to another
authenticator on the network, configure the identity profile parameters
(see dot1x identity profile command) which identify this switch as a
supplicant, and enable dot1x supplicant mode for those ports which
must authenticate clients through a remote authenticator using this
command. In this mode the port will not respond to dot1x messages
meant for an authenticator.
◆ This switch can be configured to serve as the authenticator on selected
ports by setting the control mode to “auto” (see the dot1x port-control
command), and as a supplicant on other ports by the setting the
control mode to “force-authorized” and enabling dot1x supplicant mode
with this command.
To Next Page
Loading...
Need help?
General
