Support User Manuals

D-Link DES-3500Series Switch User Manual

Open as PDF

of 322

DES-3500 Layer 2 Fast Ethernet Switch CLI Reference Manual

171

24

802.1X COMMANDS (INCLUDING GUEST VLANS)

The DES-3500 implements the server-side of the IEEE 802.1x Port-based and MAC-based Network Access Control. This

mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing

criteria for each port on the Switch that a user or network device must meet before allowing that port to forward or receive frames.

Command Parameters

enable 802.1x

disable 802.1x

show 802.1x auth_state {ports <portlist>}

show 802.1x auth_configuration {ports <portlist>}

config 802.1x capability ports [<portlist> | all] [authenticator | none]

config 802.1x auth_parameter

ports

[<portlist> | all] [default | {direction [both | in] | port_control [force_unauth

| auto | force_auth] | quiet_period <sec 0-65535> | tx_period <sec 1-

65535> | supp_timeout <sec 1-65535> | server_timeout <sec 1-65535> |

max_req <value 1-10> | reauth_period <sec 1-65535> | enable_reauth

[enable | disable]}]

config 802.1x auth_protocol [radius eap | radius pap]

config 802.1x init {port_based ports [<portlist> | all] | mac_based [ports] [<portlist> |all]

{mac_address <macaddr>}]

config 802.1x auth_mode [port_based | mac_based]

config 802.1x reauth {port_based ports [<portlist> | all] | mac_based [ports] [<portlist> | all]

{mac_address <macaddr>}]

config radius add <server_index 1-3> <server_ip> key <passwd 32> [default | {auth_port

<udp_port_number 1-65535> | acct_port <udp_port_number 1-65535>}]

config radius delete <server_index 1-3>

config radius <server_index 1-3> {ipaddress <server_ip> | key <passwd 32>

[auth_port <udp_port_number 1-65535> acct_port <udp_port_number 1-

65535>]}

show radius

create 802.1x guest_vlan <vlan_name 32>

config 802.1x guest_vlan ports [<portlist> | all] state [enable | disable]

delete 802.1x guest_vlan {<vlan_name 32>}

show 802.1x guest_vlan

Each command is listed, in detail, in the following sections

enable 802.1x

Purpose Used to enable the 802.1x server on the Switch.

Syntax

enable 802.1x

Description

The enable 802.1x command enables the 802.1x Network Access

control server application on the Switch. To select between port-based

or MAC-based, use the config 802.1x auth_mode command.

previous next