17 dot1x single-host-violation, Default configuration, Command mode – PLANET WGSD-1022 User Manual

Use the no form of this command to return to the default setting.

dot1x multiple-hosts

no dot1x multiple-hosts

This command has no arguments or keywords.

Default Configuration

Multiple hosts are disabled. If a port would join a port-channel, the state would be multiple hosts as long

as the port is member in the port-channel.

Command Mode

Interface configuration (Ethernet) mode

User Guidelines

This command enables the attachment of multiple clients to a single 802.1X-enabled port. In this mode,

only one of the attached hosts must be successfully authorized for all hosts to be granted network access.

If the port becomes unauthorized, all attached clients are denied access to the network.

If a port would join a port-channel, the state would be multiple host as long as the port is member in the

port-channel.

Examples

The following command allows multiple hosts (clients) on an 802.1X-authorized port.

console config-if(Config-VLAN)#dot1x multiple-hosts

5.29.17 dot1x single-host-violation

The dot1x single-host-violation interface configuration command configures the action to be taken,

when a station whose MAC address is not the supplicant MAC address, attempts to access the interface.

Use the no form of this command to return to default.

Syntax

dot1x single-host-violation {forward | discard | discard-shutdown} [trap seconds]

no port dot1x single-host-violation

ƒ forward — Forward frames with source addresses not the supplicant address, but do not learn

the address.

ƒ discard — Discard frames with source addresses not the supplicant address.

ƒ discard-shutdown — Discard frames with source addresses not the supplicant address. The port

is also shutdown.