Authentication Commands
4-85
4
show dot1x
This command shows general port authentication related settings on the switch or a
specific interface.
Syntax
show dot1x [statistics] [interface interface]
• statistics - Displays dot1x status for each port.
• interface
• ethernet unit/port
- unit - Stack unit. (Range: 1-8)
- port - Port number. (Range: 1-25/49)
Command Mode
Privileged Exec
Command Usage
This command displays the following information:
• Global 802.1X Parameters – Shows whether or not 802.1X port
authentication is globally enabled on the switch.
• 802.1X Port Summary – Displays the port access control parameters for
each interface that has enabled 802.1X, including the following items:
- Status – Administrative state for port access control.
- Operation Mode – Allows single or multiple hosts (page 4-82).
- Mode – Dot1x port control mode (page 4-81).
- Authorized – Authorization status (yes or n/a - not authorized).
• 802.1X Port Details – Displays the port access control parameters for each
interface, including the following items:
- reauth-enabled – Periodic re-authentication (page 4-83).
- reauth-period – Time after which a connected client must be
re-authenticated (page 4-84).
- quiet-period – Time a port waits after Max Request Count is
exceeded before attempting to acquire a new
client (page 4-83).
- tx-period – Time a port waits during authentication session
before re-transmitting EAP packet (page 4-84).
- supplicant-timeout – Supplicant timeout.
- server-timeout – Server timeout.
- reauth-max – Maximum number of reauthentication attempts.
- max-req – Maximum number of times a port will retransmit
an EAP request/identity packet to the client
before it times out the authentication session
(page 4-81).
- Status – Authorization status (authorized or not).
- Operation Mode – Shows if single or multiple hosts (clients) can
connect to an 802.1X-authorized port.