2 802.1x configuration task list, Onfiguration – PLANET XGS3-24042 User Manual

Page 526

Advertising
background image

52-12

the port into Guest VLAN if there is no supplicant getting authenticated successfully in a certain stretch of time

because of lacking exclusive authentication supplicant system or the version of the supplicant system being

too low.

Once the 802.1x feature is enabled and the Guest VLAN is configured properly, a port will be added into

Guest VLAN, just like Auto VLAN, if there is no response message from the supplicant system after the device

sends more authentication-triggering messages than the upper limit (EAP-Request/Identity) from the port.

The authentication server assigns an Auto VLAN, and then the port leaves Guest VLAN and joins

the assigned Auto VLAN. When the user becomes offline, the port will be allocated to the specified

Guest VLAN again.

The authentication server assigns an Auto VLAN, and then the port leaves Guest VLAN and joins

the specified VLAN. When the user becomes offline, the port will be allocated to the specified

Guest VLAN again.

52.2 802.1x Configuration Task List

802.1x Configuration Task List:

1. Enable IEEE 802.1x function

2. Access management unit property configuration

1) Configure port authentication status

2) Configure access management method for the port: MAC-based or port-based

3) Configure expanded 802.1x function

3. User access devices related property configuration (optional)

1. Enable 802.1x function

Command

Explanation

Global Mode

dot1x enable

no dot1x enable

Enables the 802.1x function in the switch and ports; the no

command disables the 802.1x function.

dot1x privateclient enable

no dot1x privateclient enable

Enables the switch force client software using private

802.1x authentication packet format. The no command will

disable this function.

dot1x user free-resource

<prefix> <mask>

no dot1x user free-resource

Sets free access network resource for unauthorized dot1x

user. The no command close the resource.

dot1x unicast enable

no dot1x unicast enable

Enable the 802.1x unicast passthrough function of switch;

the no operation of this command will disable this function.

2. Access management unit property configuration

1) Configure port authentication status

Advertising
This manual is related to the following products:

XGS3-24242

Popular Brands
Popular manuals