137
Step Command Remarks
2. Enter interface view.
interface
interface-type
interface-number
N/A
3. Enable key negotiation of the
11key type.
port-security tx-key-type 11key
Disabled by default.
Configuring a PSK
A PSK pre-configured on the device is used to negotiate the session key between the user and the
device.
To configure a PSK:
Step Command Remarks
1. Enter system
view.
system-view
N/A
2. Enter interface
view.
interface
interface-type interface-number N/A
3. Configure a PSK.
port-security preshared-key
{
pass-phrase
|
raw-key
}
[
cipher
|
simple
]
key
By default, no PSK is configured.
Ignoring authorization information from the server
You can configure a port to ignore the authorization information received from the server (an
RADIUS server or the local device) after an 802.1X user or MAC authentication user passes
authentication.
To configure a port to ignore authorization information from the server:
Step Command Remarks
1. Enter system view.
system-view
N/A
2. Enter interface view.
interface
interface-type
interface-number
N/A
3. Ignore the authorization
information received from
the authentication server.
port-security authorization
ignore
By default, a port uses the
authorization information received
from the authentication server.
Displaying and maintaining port security
Task Command Remarks
Display port security configuration
information, operation
information, and statistics about
one or more ports or all ports.
display port-security
[
interface
interface-list ]
[
|
{
begin
|
exclude
|
include
}
regular-expression ]
Available in any
view.
Display information about secure
MAC addresses.
display port-security mac-address security
[
interface
interface-type interface-number ]
[
vlan
vlan-id ] [
count
] [
|
{
begin
|
exclude
|
include
} regular-expression ]
Available in any
view.
To Next Page
Loading...
Need help?
General
