A
UTHENTICATION
C
OMMANDS
4-107
802.1X Port Authentication
The switch supports IEEE 802.1X (dot1x) port-based access control that
prevents unauthorized access to the network by requiring users to first
submit credentials for authentication. Client authentication is controlled
centrally by a RADIUS server using EAP (Extensible Authentication
Protocol).
Table 4-32 802.1X Port Authentication
Command Function Mode Page
dot1x
system-auth-control
Enables dot1x globally on the switch. GC 4-108
dot1x default Resets all dot1x parameters to their
default values
GC 4-108
dot1x max-req Sets the maximum number of times that
the switch retransmits an EAP request/
identity packet to the client before it
times out the authentication session
IC 4-109
dot1x port-control Sets dot1x mode for a port interface IC 4-109
dot1x
operation-mode
Allows single or multiple hosts on an
dot1x port
IC 4-110
dot1x re-authenticate Forces re-authentication on specific ports PE 4-111
dot1x
re-authentication
Enables re-authentication for all ports IC 4-111
dot1x timeout
quiet-period
Sets the time that a switch port waits after
the Max Request Count has been
exceeded before attempting to acquire a
new client
IC 4-112
dot1x timeout
re-authperiod
Sets the time period after which a
connected client must be
re-authenticated
IC 4-112
dot1x timeout
tx-period
Sets the time period during an
authentication session that the switch
waits before re-transmitting an EAP
packet
IC 4-113
show dot1x Shows all dot1x related information PE 4-114