3 dot1x accept-mac, 4 dot1x eapor enable – Accton Technology ES4626 User Manual

Page 788

Advertising
background image

788

to the RADIUS accounting server only when accounting is enabled, the “user offline”

message will not be sent to the RADIUS authentication server.

Example:

Enabling AAA accounting for the switch.

Switch(Config)#aaa-accounting enable

19.3.3 dot1x accept-mac

Command: dot1x accept-mac <mac-address> [interface <interface-name>]

no dot1x accept-mac <mac-address> [interface <interface-name>]

Function:

Adds a MAC address entry to the dot1x address filter table. If a port is

specified, the entry added applies to the specified port only. If no port is specified, the

entry added applies to all the ports. The “no dot1x accept-mac <mac-address>

[interface <interface-name>]

” command deletes the entry from dot1x address filter

table.

Parameters:

<mac-address> stands for MAC address; <interface-name> for interface

name and port number.

Command mode:

Global Mode

Default:

N/A.

Usage Guide:

The dot1x address filter function is implemented according to the MAC

address filter table, dot1x address filter table is manually added or deleted by the user.

When a port is specified in adding a dot1x address filter table entry, that entry applies to

the port only; when no port is specified, the entry applies to all ports in the switch. When

dot1x address filter function is enabled, the switch will filter the authentication user by the

MAC address. Only the authentication request initialed by the users in the dot1x address

filter table will be accepted, the rest will be rejected.

Example:

Adding MAC address 00-01-34-34-2e-0a to the filter table of Ethernet 1/5.

Switch(Config)#dot1x accept-mac 00-01-34-34-2e-0a interface ethernet 1/5

19.3.4 dot1x eapor enable

Command: dot1x eapor enable

no dot1x eapor enable

Function:

Enables the EAP relay authentication function in the switch; the “no dot1x

eapor enable

” command sets EAP local end authentication.

Command mode:

Global Mode

Default:

EAP relay authentication is used by default.

Usage Guide:

The switch and RADIUS may be connected via Ethernet or PPP. If an

Ethernet connection exists between the switch and RADIUS server, the switch needs to

authenticate the user by EAP relay (EAPoR authentication); if the switch connects to the

Advertising
This manual is related to the following products:

ES4650, ES4624-SFP, ES4626-SFP

Popular Brands
Popular manuals