Example
The following example enables port security for port 5, and sets the response to a
security violation to issue a trap message:
Console(config)#interface ethernet 1/5
Console(config-if)#port security action trap
Related Commands
shutdown (27-7)
mac-address-table static (31-1)
802.1X Port Authentication
The switch supports IEEE 802.1X (dot1x) port-based access control that prevents
unauthorized access to the network by requiring users to first submit credentials for
authentication. Client authentication is controlled centrally by a RADIUS server
using EAP (Extensible Authentication Protocol).
Table 25-13 802.1X Port Authentication Commands
Command
dot1x system-auth-control
dot1x default
dot1x max-req
dot1x port-control
dot1x operation-mode
dot1x re-authenticate
dot1x re-authentication
dot1x timeout quiet-period
dot1x timeout re-authperiod
dot1x timeout tx-period
show dot1x
25-26
Function
Enables dot1x globally on the switch.
Resets all dot1x parameters to their default values
Sets the maximum number of times that the switch
retransmits an EAP request/identity packet to the client
before it times out the authentication session
Sets dot1x mode for a port interface
Allows single or multiple hosts on an dot1x port
Forces re-authentication on specific ports
Enables re-authentication for all ports
Sets the time that a switch port waits after the Max
Request Count has been exceeded before attempting to
acquire a new client
Sets the time period after which a connected client must
be re-authenticated
Sets the time period during an authentication session that
the switch waits before re-transmitting an EAP packet
Shows a
l
dot1x related information
Mode Page
GC 25-27
GC 25-27
IC 25-27
IC 25-28
IC 25-29
PE 25-30
IC 25-30
IC 25-31
IC 25-31
IC 25-32
PE 25-32
User Authentication Commands
25