Alliedware plus commands – Allied Telesis AT-S63 User Manual

Chapter 42: 802.1x Port-based Network Access Control Commands

818

Section VIII: Port Security

AlliedWare Plus

Commands

Syntax for 802.1x Username and Password Authentication

To set a port to the authenticator role for 802.1x username and password
authentication and to specify the authenticator state:

dot1x port-control auto
dot1x port-control force-authorized
dot1x port-control force-unauthorized

To remove a port from the authenticator role:

no dot1x port-control

To configure the authenticator port parameters:

dot1x port-control mode single|multi
dot1x quiet-period

quietperiod

dot1x timeout tx-period

txperiod

dot1x timeout re-authperiod

reauthperiod

dot1x timeout supp-timeout

supptimeout

dot1x timeout server-timeout

servertimeout

dot1x max-req

maxreq

dot1x port-control dir in
dot1x port-control dir both

To control reauthentication, which determines whether supplicants must
periodically reauthenticate:

dot1x reauthentication
no dot1x reauthentication

To enable or disable the piggyback mode:

dot1x piggyback
no dot1x piggyback

To enable or disable the secure VLAN mode:

dot1x secure-vlan
no dot1x secure-vlan

To control whether an authenticator port’s VLAN assignment is set by the
user account on the RADIUS server:

dot1x dynamic-vlan-creation enable
dot1x dynamic-vlan-creation disable

To return the parameters to their default values:

no dot1x port-control
no dot1x quiet-period
no dot1x timeout tx-period
no dot1x timeout re-authperiod
no dot1x timeout supp-timeout