Configuration Guide Configuring 802.1X
Configuring the Preshared Key for Communication between the NAS and RADIUS Server
(Mandatory) The preshared key for communication between the NAS and RADIUS server must be configured to ensure
proper communication between the NAS and the RADIUS server.
Configure the preshared key of the RADIUS server after 802.1X authentication is enabled on the NAS.
string: Indicates the preshared key.
No preshared key is configured for communication between the NAS and RADIUS server by default.
Global configuration mode
The IP address of the NAS must be the same as that registered on the RADIUS server.
The preshared key on the NAS must be the same as that on the RADIUS server.
If the default RADIUS communication ports are changed on the RADIUS server, you need to change the
communication ports on the NAS correspondingly.
Enabling 802.1X on an AC or AP
This function is mandatory in a wireless network.
Enable 802.1X on an AC or AP.
If 802.1X is enabled on a WLAN, only 802.11 management frames and EAP packets are allowed to pass.
For related commands, see the Configuring RSNA.
Verification
Start Ruijie Supplicant, enter the correct account information, and initiate authentication. Then check whether the 802.1X and
RADIUS configurations are correct.
Checking for 802.1X Authentication Entries
Privileged EXEC mode/Global configuration mode/Interface configuration mode
Display entries of authenticated users to check the authentication status of users, for example,
authenticating, authenticated, or quiet.
Ruijie#show dot1x summary
ID Username MAC Interface VLAN Auth-State Backend-state Port-Status
User-Type Time
--------- ---------- -------------- --------- ---- --------------- ------------- -----------
--------- -----------------
To Next Page
Loading...
Need help?
General
