User's Manual
Table Of Contents
- Chapter 1 Introduction
- Chapter 2 Hardware Installation
- Chapter 3 Network Configuration
- Chapter 4 Initial Configuration
- Chapter 5 System Configuration
- Chapter 6 Command Line Interface
- Using the Command Line Interface
- Entering Commands
- Command Groups
- General Commands
- System Management Commands
- SNMP Commands
- Flash/File Commands
- RADIUS Client
- 802.1x Port Authentication
- Filtering Commands
- Interface Commands
- interface
- dns server
- ip address
- ip dhcp
- shutdown
- speed-duplex
- show interface ethernet
- description
- closed-system
- speed
- channel
- turbo
- ssid
- beacon-interval
- dtim-period
- fragmentation-length
- rts-threshold
- authentication
- encryption
- key
- transmit-key
- transmit-power
- max-association
- multicast-cipher
- wpa-clients
- wpa-mode
- wpa-preshared-key
- wpa-psk-type
- shutdown
- show interface wireless
- show station
- IAPP Commands
- VLAN Commands
- Appendix A Troubleshooting
- Appendix B Cables and Pinouts
- Appendix C Specifications
- Glossary
- Index
802.1x Port Authentication
6-47
802.1x Port Authentication
The access point supports IEEE 802.1x access control for
wireless clients. This control feature prevents unauthorized
access to the network by requiring a 802.1x client application to
submit a user name and password for authentication. Client
authentication is then verified via by a RADIUS server using
EAPOL (Extensible Authentication Protocol Over LAN) before the
access point grants client access to the network.
Command Function Mode Page
802.1x Configures 802.1x as disabled,
supported, or required
GC 6-48
802.1x
broadcast-key-
refresh-rate
Sets the interval at which the primary
broadcast keys are refreshed for
stations using 802.1x dynamic keying
GC 6-49
802.1x
session-key-
refresh-rate
Sets the interval at which unicast
session keys are refreshed for
associated stations using dynamic
keying
GC 6-50
802.1x
session-timeout
Sets the timeout after which a
connected client must be
re-authenticated
GC 6-51
address filter
default
Sets filtering to allow or deny listed
addresses
GC 6-51
address filter
entry
Enters a MAC address in the filter
table
GC 6-52
address filter
delete
Removes a MAC address from the
filter table
GC 6-53
mac-
authentication
server
Sets address filtering to be performed
with local or remote options
GC 6-54