User Authentication Commands
21-24
21
Example
802.1X Port Authentication
The switch supports IEEE 802.1X (dot1x) port-based access control that prevents
unauthorized access to the network by requiring users to first submit credentials for
authentication. Client authentication is controlled centrally by a RADIUS server
using EAP (Extensible Authentication Protocol).
Console#show public-key host
Host:
RSA:
1024 65537 13236940658254764031382795526536375927835525327972629521130241
0719421061655759424590939236096954050362775257556251003866130989393834523
1033280214988866192159556859887989191950588394018138744046890877916030583
7768185490002831341625008348718449522087429212255691665655296328163516964
0408315547660664151657116381
DSA:
ssh-dss AAAB3NzaC1kc3MAAACBAPWKZTPbsRIB8ydEXcxM3dyV/yrDbKStIlnzD/Dg0h2Hxc
YV44sXZ2JXhamLK6P8bvuiyacWbUW/a4PAtp1KMSdqsKeh3hKoA3vRRSy1N2XFfAKxl5fwFfv
JlPdOkFgzLGMinvSNYQwiQXbKTBH0Z4mUZpE85PWxDZMaCNBPjBrRAAAAFQChb4vsdfQGNIjw
bvwrNLaQ77isiwAAAIEAsy5YWDC99ebYHNRj5kh47wY4i8cZvH+/p9cnrfwFTMU01VFDly3IR
2G395NLy5Qd7ZDxfA9mCOfT/yyEfbobMJZi8oGCstSNOxrZZVnMqWrTYfdrKX7YKBw/Kjw6Bm
iFq7O+jAhf1Dg45loAc27s6TLdtny1wRq/ow2eTCD5nekAAACBAJ8rMccXTxHLFAczWS7EjOy
DbsloBfPuSAb4oAsyjKXKVYNLQkTLZfcFRu41bS2KV5LAwecsigF/+DjKGWtPNIQqabKgYCw2
o/dVzX4Gg+yqdTlYmGA7fHGm8ARGeiG4ssFKy4Z6DmYPXFum1Yg0fhLwuHpOSKdxT3kk475S7
w0W
Console#
Table 21-12 802.1X Port Authentication Commands
Command Function Mode Page
dot1x system-auth-control Enables dot1x globally on the switch. GC 21-25
dot1x default Resets all dot1x parameters to their default values GC 21-25
dot1x max-req Sets the maximum number of times that the switch
retransmits an EAP request/identity packet to the client
before it times out the authentication session
IC 21-25
dot1x port-control Sets dot1x mode for a port interface IC 21-26
dot1x operation-mode Allows single or multiple hosts on an dot1x port IC 21-26
dot1x re-authenticate Forces re-authentication on specific ports PE 21-27
dot1x re-authentication Enables re-authentication for all ports IC 21-27
dot1x timeout quiet-period Sets the time that a switch port waits after the Max
Request Count has been exceeded before attempting to
acquire a new client
IC 21-28
dot1x timeout re-authperiod Sets the time period after which a connected client must
be re-authenticated
IC 21-28
dot1x timeout tx-period Sets the time period during an authentication session that
the switch waits before re-transmitting an EAP packet
IC 21-29
show dot1x Shows all dot1x related information PE 21-29
To Next Page
Loading...
Need help?
General