Port security, 1x port authentication – Asante Technologies 40240/40480-10G User Manual

Example

The following example enables port security for port 5, and sets the response to a
security violation to issue a trap message:

Console(config)#interface ethernet 1/5

Console(config-if)#port security action trap

Related Commands

shutdown (27-7)
mac-address-table static (31-1)

802.1X Port Authentication

The switch supports IEEE 802.1X (dot1x) port-based access control that prevents
unauthorized access to the network by requiring users to first submit credentials for
authentication. Client authentication is controlled centrally by a RADIUS server
using EAP (Extensible Authentication Protocol).

Table 25-13 802.1X Port Authentication Commands

Command

dot1x system-auth-control

dot1x default

dot1x max-req

dot1x port-control

dot1x operation-mode

dot1x re-authenticate

dot1x re-authentication

dot1x timeout quiet-period

dot1x timeout re-authperiod

dot1x timeout tx-period

show dot1x

25-26

Function

Enables dot1x globally on the switch.

Resets all dot1x parameters to their default values

Sets the maximum number of times that the switch

retransmits an EAP request/identity packet to the client

before it times out the authentication session

Sets dot1x mode for a port interface

Allows single or multiple hosts on an dot1x port

Forces re-authentication on specific ports

Enables re-authentication for all ports

Sets the time that a switch port waits after the Max

Request Count has been exceeded before attempting to

acquire a new client

Sets the time period after which a connected client must

be re-authenticated

Sets the time period during an authentication session that

the switch waits before re-transmitting an EAP packet

Shows a l dot1x related information

Mode Page

GC 25-27

GC 25-27

IC 25-27

IC 25-28

IC 25-29

PE 25-30

IC 25-30

IC 25-31

IC 25-31

IC 25-32

PE 25-32

User Authentication Commands

25