Support User Manuals

D-Link DES-3200 Switch User Manual

Open as PDF

of 523

xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide

185

show 802.1x

Parameters

auth_state – Displays the current authentication state of the 802.1X server.

auth_configuration – Displays the current authentication configuration of the 802.1X server.

ports <portlist> − Specifies a port or range of ports to view.

The following details are displayed for the authentication configuration:

802.1x Enabled / Disabled − Shows the current status of 802.1X functions on the Switch.

Authentication Mode – Shows the authentication mode, whether it be by MAC address or by

port.

Authentication Protocol − Shows the authentication protocol suite in use between the Switch

and a RADIUS server. May read Radius_Eap or local.

Port number − Shows the physical port number on the Switch.

Capability: Authenticator/None − Shows the capability of 802.1X functions on the port number

displayed above. There are two 802.1X capabilities that can be set on the Switch: Authenticator

and None.

AdminCtlDir: Both / In − Shows whether a controlled Port that is unauthorized will exert control

over communication in both receiving and transmitting directions, or just the receiving direction.

OpenCtlDir: Both / In − Shows whether a controlled Port that is unauthorized will exert control

over communication in both receiving and transmitting directions, or just the receiving direction.

Port Control: ForceAuth / ForceUnauth / Auto − Shows the administrative control over the port’s

authorization status. ForceAuth forces the Authenticator of the port to become Authorized.

ForceUnauth forces the port to become Unauthorized.

QuietPeriod − This is the initialization value of the quiet period timer. The default value is 60s

and can be any value between 0-65535.

TxPeriod − This us the initialization value of the tx timer. The default value is 30s and can be

any value between 1-65535.

SuppTimeout − Shows the time to wait for a response from a supplicant (user) for all EAP

packets, except for the Request / Identity packets.

ServerTimeout − Shows the length of time to wait for a response from a RADIUS server.

MaxReq − Shows the maximum number of times to retry sending packets to the supplicant.

ReAuthPeriod − Shows the time interval between successive re-authentications.

ReAuthenticate: Enabled / Disabled − Shows whether or not to re-authenticate.

The following details are displayed for the current authentication state:

Port number − Shows the physical port number on the Switch.

Auth PAE State: Initalize / Disconnected / Connecting / Authenticating / Authenticated / Held /

ForceAuth / ForceUnauth − Shows the current state of the Authenticator PAE.

Backend State: Request / Response / Fail / Idle / Initalize / Success / Timeout − Shows the

current state of the Backend Authenticator.

Port Status: Authorized / Unauthorized − Shows the result of the authentication process.

Authorized means that the user was authenticated, and can access the network. Unauthorized

means that the user was not authenticated, and cannot access the network

Restrictions

None.

Example usage:

To display the 802.1X authentication states:

previous next