Specifications
2-182
Catalyst 4500 Series Switch Cisco IOS Command Reference—Release IOS XE 3.3.0XO(15.1(1)XO)
OL_28738-01
Chapter 2 Cisco IOS Commands for the Catalyst 4500 Series Switches
dot1x critical vlan
dot1x critical vlan
To assign a critically authenticated port to a specific VLAN, use the dot1x critical vlan command. To
return to the default setting, use the no form of this command.
dot1x critical vlan vlan-id
no dot1x critical vlan-id
Syntax Description
Defaults Cr itical authentication is disabled on a ports VLAN.
Command Modes Interface configur ation mode
Usage Guidelines T he type of VLAN specified must match the type of the port. If the port is an access port, the VLAN
must be a regular VLAN. If the port is a private-VLAN host port, the VLAN must be the secondary
VLAN of a valid private-VLAN domain. If the port is a routed port, no VLAN may be specified.
This command is not supported on platforms such as Layer 3 switches that do not include the Critical
Auth VLAN sub system.
Examples This example shows how to enable 802.1x critical authentication on a ports VLAN:
Switch(config-if)# dot1x critical vlan 350
Switch(config-if)#
Related Commands
vlan-id (Optional) Specifies the VLANs; valid values are from 1 to 4094.
Command Description
dot1x critical Enables the 802.1X critical a uthentication on a port.
dot1x critical eapol Enables sending E APOL success packets w hen a por t is
critically authorized partway through an EAP exchange.
dot1x critical recovery delay Sets the time interval between port reinitializations.
show dot1x D isplays dot1x infor mation.