Configuration Guide 802.1x Configuration
aaa authentication dot1x authen group radius
!
username Ruijie password 0 starnet
!
radius-server host 192.168.217.64
radius-server key 7 072d172e071c2211
!
!
!
dot1x authentication authen
!
interface VLAN 1
ip address 192.168.217.222 255.255.255.0
no shutdown
!
!
line con 0
line vty 0 4
!
end
To apply the RADIUS authentication method in the 802.1x, configure the IP address of the Radius Server and make sure
normal communication between the device and the Radius Server. Without the coordination of the Radius Server, the
switch cannot perform authentication. For setting the communication between the Radius Server and the switch, please
see the previous section.
Enabling/Disabling the Authentication of a Port
If you enable authentication for a port when the 802.1x is enabled, the port becomes a controlled port, and the users
under the port must first pass authentication before they can access the network. However, the users under the
uncontrolled port can directly access the network.
In the privileged EXEC mode, you can set authentication for a port by performing the following steps:
Set the port to be a controlled port (enable interface
authentication). You can use the no option of the command to
disable the authentication of the interface.
You can use the no dot1x port-control command to disable the authentication of the interface. The following example
sets Ethernet interface 1/1 to be a controlled interface:
Ruijie# configure terminal
Ruijie(config)# interface f 1/1
To Next Page
Loading...
