AMX NXA-ENET24 Switch User Manual

Open as PDF

of 304

CLI (Command Line Interface)

205

NXA-ENET24 - Software Management Guide

802.1x Port Authentication

The switch supports IEEE 802.1x (dot1x) port-based access control that prevents unauthorized access to the

network by requiring users to first submit credentials for authentication. Client authentication is controlled

centrally by a RADIUS server using EAP (Extensible Authentication Protocol).

Port Security Commands (Cont.)

Command Function

show mac-address-table (Cont.) Note that the Type field may include the following types:

• Learned - Dynamic address entries

• Permanent - Static entry

• Delete-on-reset - Static entry to be deleted when system is reset

The mask should be hexadecimal numbers (representing an equivalent

bit mask) in the form xx-xx-xx-xx-xx-xx that is applied to the specified

MAC address.

Enter hexadecimal numbers, where an equivalent binary bit “0” means to

match a bit and “1” means to ignore a bit. For example, a mask of

00-00-00-00-00-00 means an exact match, and a mask of

FF-FF-FF-FF-FF-FF means “any.”

The maximum number of address entries is 8191.

Example:

Console#show mac-address-table

Interface Mac Address Vlan Type

--------- ----------------- ---- -----------------

Eth 1/1 00-e0-29-94-34-de 1 Delete-on-reset

Trunk 2 00-E0-29-8F-AA-1B 1 Learned

Console#

802.1x Port Authentication Commands

Command Function

dot1x system-auth-control

This command enables 802.1X

port authentication globally on the

switch.

Use the no form to restore the

default.

Syntax:

[no] system-auth-control

Default Setting: Disabled

Command Mode: Global Configuration

Example:

Console(config)#dot1x system-auth-control

Console(config)#

dot1x default

This command sets all

configurable dot1x global and port

settings to their default values.

Syntax:

dot1x default

Command Mode: Global Configuration

Example:

Console(config)#dot1x default

Console(config)#

dot1x max-req

This command sets the maximum

number of times the switch port

will retransmit an EAP request/

identity packet to the client before

it times out the authentication ses-

sion.

Use the no form to restore the

default.

Syntax:

dot1x max-req count

no dot1x max-req

• count – The maximum number of requests (Range: 1-10)

Default: 2

Command Mode: Interface Configuration

Example:

Console(config)#interface eth 1/2

Console(config-if)#dot1x max-req 2

Console(config-if)#

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

AMX NXA-ENET24 Switch User Manual