Example of the Authentication Process . . . . . . . . . . . . . . . . . . . . . . . . 10-8
VLAN Membership Priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-9
General Operating Rules and Notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-11
General Setup Procedure for Port-Based Access Control (802.1X) . . . . 10-13
Do These Steps Before You Configure 802.1X Operation . . . . . . . . 10-13
Overview: Configuring 802.1X Authentication on the Switch . . . . . 10-13
Configuring Switch Ports as 802.1X Authenticators . . . . . . . . . . . . . . . . 10-15
1. Enable 802.1X Authentication on Selected Ports . . . . . . . . . . . . . 10-15
3. Configure the 802.1X Authentication Method . . . . . . . . . . . . . . . . 10-19
4. Enter the RADIUS Host IP Address(es) . . . . . . . . . . . . . . . . . . . . . 10-20
5. Enable 802.1X Authentication on the Switch . . . . . . . . . . . . . . . . 10-21
Operating Rules for Authorized-Client
Option For Authenticator Ports: Configure Port-Security To Allow Only
Port-Security on 5300xl Switches Running Software Release E.09.xx or
Port-Security on 3400cl and 6400cl Switches, and on 5300xl Switches
Configuring Switch Ports To Operate As Supplicants for 802.1X Connections
802.1X Open VLAN Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-21
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-21
VLAN Membership Priorities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-22
Use Models for 802.1X Open VLAN Modes . . . . . . . . . . . . . . . . . . . . 10-23
and Unauthorized-Client VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-27
Setting Up and Configuring 802.1X Open VLAN Mode . . . . . . . . . . . 10-31
802.1X Open VLAN Operating Notes . . . . . . . . . . . . . . . . . . . . . . . . . 10-35
802.1X-Authenticated Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-36
Greater . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-36
Running Software Earlier than E.09.xx . . . . . . . . . . . . . . . . . . . . . . . 10-37
to Other Switches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-38
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-38
Supplicant Port Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-40
Displaying 802.1X Configuration, Statistics, and Counters . . . . . . . . . . . 10-42
Show Commands for Port-Access Authenticator . . . . . . . . . . . . . . . 10-42
Viewing 802.1X Open VLAN Mode Status . . . . . . . . . . . . . . . . . . . . . 10-44
Show Commands for Port-Access Supplicant . . . . . . . . . . . . . . . . . . 10-48
How RADIUS/802.1X Authentication Affects VLAN Operation . . . . . . . 10-49
Messages Related to 802.1X Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-53
xi
To Next Page
Loading...
Need help?
General