Dot1x host-mode – Dell PowerEdge VRTX User Manual

332

802.1X Commands

FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\CLI Folders\Dell Plasma-ARC

2+3\new_system_mifs_ARC2_latest\802_1X.fm

D E L L C O N F ID E N T IA L – P R E L IM I N A RY 4 / 3 /1 4 - FO R P R O O F O N LY

dot1x host-mode

Use the dot1x host-mode Interface Configuration mode command to allow a

single host (client) or multiple hosts on an IEEE 802.1X-authorized port. Use

the no form of this command to return to the default setting.

Syntax

dot1x host-mode {multi-host | single-host | multi-sessions}

Parameters



multi-host—Enable multiple-hosts mode.



single-host—Enable single-hosts mode.



multi-sessions—Enable multiple-sessions mode.

Default Configuration

Default mode is multi-host.

Command Mode

Interface (Ethernet) Configuration mode

User Guidelines

Single-Host Mode
The single-host mode manages the authentication status of the port: the port

is authorized if there is an authorized host. In this mode, only a single host

can be authorized on the port.
When a port is unauthorized and the guest VLAN is enabled, untagged traffic

is remapped to the guest VLAN. Tagged traffic is dropped unless the VLAN

tag is the guest VLAN or the unauthenticated VLANs. If guest VLAN is not

enabled on the port, only tagged traffic belonging to the unauthenticated

VLANs is bridged.
When a port is authorized, untagged and tagged traffic from the authorized

host is bridged based on the static VLAN membership configured at the port.

Traffic from other hosts is dropped.
A user can specify that untagged traffic from the authorized host will be

remapped to a VLAN that is assigned by a RADIUS server during the

authentication process. In this case, tagged traffic is dropped unless the