C
HAPTER
16
| IEEE 802.1X Commands
– 268 –
COMMAND USAGE
The fields shown by this command are described below:
EXAMPLE
Dot1x>configuration 1-10
Mode : Enabled
Reauthentication: Disabled
Period : 3600
Timeout : 30
Age Period : 300
Hold Time : 10
Port Admin State Port State Last Source Last ID
---- ------------ --------------------- ----------------- -------
1 Authorized Authorized - -
2 Authorized Authorized - -
3 Authorized Link Down - -
4 Authorized Authorized - -
5 Authorized Authorized - -
6 Authorized Link Down - -
7 Authorized Link Down - -
8 Authorized Link Down - -
9 Authorized Link Down - -
10 Authorized Link Down - -
Dot1x>
Table 28: 802.1X Configuration
Field Description
Port Port index
Admin State Administrative state (Enabled or Disabled)
Port State Operational state:
• Disabled - 802.1X and MAC-based authentication are globally
disabled.
• Link Down - 802.1X or MAC-based authentication is enabled, but
there is no link on the port.
• Authorized - The port is authorized. This state exists when 802.1X
authentication is enabled, the port has a link, the Admin State is
“802.1X,” and the supplicant is authenticated, or when the Admin
State is “Authorized.”
• Unauthorized - The port is unauthorized. This state exists when
802.1X authentication is enabled, the port has a link, and the
Admin State is “Auto,” but the supplicant is not (or not yet)
authenticated, or when the Admin State is “Unauthorized.”
• X Auth/Y Unauth - X clients are currently authorized and Y are
unauthorized. This state is shown when 802.1X and MAC-based
authentication is globally enabled and the Admin State is set to
“MAC-Based.”
Last Source The source MAC address carried in the most recently received EAPOL
frame for port-based authentication, and the most recently received
frame from a new client for MAC-based authentication.
Last ID The user name (supplicant identity) carried in the most recently
received Resp/ID EAPOL frame for port-based authentication, and
the source MAC address from the most recently received frame from
a new client for MAC-based authentication.