Filter
Top Products
126 | 802.1X
www.dell.com | support.dell.com
During the authentication process, the Dell Force10 system is able to learn the MAC address of the device
though the EAPoL frames, and the VLAN assignment from the RADIUS server. With this information it
creates an authorized-MAC to VLAN mapping table per port. Then, the system can tag all incoming
untagged frames with the appropriate VLAN-ID based on the table entries.
Task Command Syntax Command Mode
Enable Multi-Supplicant Authentication mode on a port.
dot1x host-mode multi-auth
Default: Single-host mode
INTERFACE
FTOS#show dot1x interface gigabitethernet 1/3 details
802.1x information on Gi 1/3:
-----------------------------
Dot1x Status: Enable
Port Control: AUTO
Port Auth Status: MULTI-AUTH
Re-Authentication: Disable
Untagged VLAN id: None
Guest VLAN: Disable
Guest VLAN id: NONE
Auth-Fail VLAN: Disable
Auth-Fail VLAN id: NONE
Auth-Fail Max-Attempts: NONE
Tx Period: 30 seconds
Quiet Period: 60 seconds
ReAuth Max: 2
Supplicant Timeout: 30 seconds
Server Timeout: 30 seconds
Re-Auth Interval: 3600 seconds
Max-EAP-Req: 2
Host Mode: MULTI-AUTH
Auth PAE State: Initialize
Backend State: Initialize
Supplicants on Gi 1/3:
----------------------
00:01:e9:45:00:03 AUTHENTICATED
00:01:e9:55:00:10 AUTHENTICATING
00:01:e9:B5:00:03 UNAUTHENTICATED
Restrict the number of supplicants that can be
authenticated on the port in multi-auth mode.
dot1x max-supplicants number
Default: 128
INTERFACE
Note: On the C-Series, during multi-supplicant authentication, devices that fail authentication may still be
counted towards the maximum number of supplicants supported by 802.1X authentication to access the
port, thus preventing the full number of supplicants to be authenticated.