C
OMMAND
L
INE
I
NTERFACE
4-104
802.1X Port Authentication
The switch supports IEEE 802.1X (dot1x) port-based access control that
prevents unauthorized access to the network by requiring users to first
submit credentials for authentication. Client authentication is controlled
centrally by a RADIUS server using EAP (Extensible Authentication
Protocol).
Table 4-32 802.1X Port Authentication Commands
Command Function Mode Page
dot1x
system-auth-control
Enables dot1x globally on the switch. GC 4-105
dot1x default Resets all dot1x parameters to their default
values
GC 4-105
dot1x max-req Sets the maximum number of times that
the switch retransmits an EAP request/
identity packet to the client before it times
out the authentication session
IC 4-105
dot1x port-control Sets dot1x mode for a port interface IC 4-106
dot1x operation-mode Allows single or multiple hosts on an dot1x
port
IC 4-107
dot1x re-authenticate Forces re-authentication on specific ports PE 4-108
dot1x re-authentication Enables re-authentication for all ports IC 4-108
dot1x timeout
quiet-period
Sets the time that a switch port waits after
the Max Request Count has been exceeded
before attempting to acquire a new client
IC 4-109
dot1x timeout
re-authperiod
Sets the time period after which a
connected client must be re-authenticated
IC 4-109
dot1x timeout tx-period Sets the time period during an
authentication session that the switch waits
before re-transmitting an EAP packet
IC 4-110
show dot1x Shows all dot1x related information PE 4-110