A
UTHENTICATION
C
OMMANDS
4-103
802.1X Port Authentication
The switch supports IEEE 802.1X (dot1x) port-based access control that
prevents unauthorized access to the network by requiring users to first
submit credentials for authentication. Client authentication is controlled
centrally by a RADIUS server using EAP (Extensible Authentication
Protocol).
Table 4-32 802.1X Port Authentication Commands
Command Function Mode Page
dot1x
system-auth-control
Enables dot1x globally on the switch. GC 4-104
dot1x default Resets all dot1x parameters to their
default values
GC 4-104
dot1x max-req Sets the maximum number of times
that the switch retransmits an EAP
request/identity packet to the client
before it times out the authentication
session
IC 4-105
dot1x port-control Sets dot1x mode for a port interface IC 4-105
dot1x operation-mode Allows single or multiple hosts on a
dot1x port
IC 4-106
dot1x re-authenticate Forces re-authentication on specific
ports
PE 4-107
dot1x re-authentication Enables re-authentication for all ports IC 4-107
dot1x timeout
quiet-period
Sets the time that a switch port waits
after the Max Request Count has been
exceeded before attempting to acquire
a new client
IC 4-108
dot1x timeout
re-authperiod
Sets the time period after which a
connected client must be
re-authenticated
IC 4-108
dot1x timeout tx-period Sets the time period during an
authentication session that the switch
waits before re-transmitting an EAP
packet
IC 4-109
show dot1x Shows all dot1x related information PE 4-109