Dell PowerEdge VRTX User Manual
Page 340
340
802.1X Commands
FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\CLI Folders\Dell Plasma-ARC
2+3\new_system_mifs_ARC2_latest\802_1X.fm
D E L L C O N F ID E N T IA L – P R E L IM I N A RY 4 / 3 /1 4 - FO R P R O O F O N LY
If the last authorized host assigned to a VLAN received from RADIUS
connected to a port in the multi-sessions mode changes its status to
unauthorized, the port is removed from the VLAN, if it is not in the static
configuration.
See the User Guidelines of the
command for more
information.
If 802.1X is disabled the port static configuration is reset.
If the reject keyword is configured and the RADIUS server authorizes the host
but the RADIUS accept message does not assign a VLAN to the supplicant,
authentication is rejected.
If the static keyword is configured and the RADIUS server authorizes the host
then even though the RADIUS accept message does not assign a VLAN to the
supplicant, authentication is accepted and the traffic from the host is bridged
in accordance with port static configuration.
If this command is used when there are authorized ports/hosts, it takes effect
at subsequent authentications. To manually re-authenticate, use the dot1x
re-authenticate command.
The command cannot be configured on a port if it together with
• Multicast TV-VLAN
• Q-in-Q
• Voice VLAN
Example
Example 1. This example enables user-based VLAN assignment. If the
RADIUS server authorized the supplicant, but did not provide a supplicant
VLAN, the supplicant is rejected.
console(config)# interface gi0/1
console(config-if)# dot1x radius-attributes vlan
console(config-if)# exit