Manualshelf

CLI Reference Guide

ManualsBrandsDell ManualsserversDell Dell Networking N2000 Series
841842843844845846847848849850
844 802.1x Commands
client is authenticated and is undisturbed by the failure condition(s). The
reasons for failure are logged and buffered into the local logging database such
that the operator can track the failure conditions. Clients authenticated when
monitor mode is enabled are always assigned to the default VLAN, regardless
of the RADIUS assignment.
RADIUS-based Dynamic VLAN Assignment
If VLAN assignment is enabled in the RADIUS server then as part of the
response message, the RADIUS server sends the VLAN ID which the client is
requested to use in the 802.1x tunnel attributes. If dynamic VLAN creation is
enabled on the switch and the RADIUS assigned VLAN does not exist, then
the assigned VLAN is dynamically created. This implies that the client can
connect from any port and be assigned to the appropriate VLAN. This gives
flexibility for clients to move around the network with out requiring the
operator to perform additional provisioning for each network interface.
Commands in this Chapter
This chapter explains the following commands:
dot1x dynamic-vlan enable dot1x timeout re-
authperiod
show authentication
statistics
dot1x initialize dot1x timeout server-
timeout
show dot1x
dot1x mac-auth-bypass dot1x timeout tx-period show dot1x authentication-
history
dot1x max-req authentication enable show dot1x clients
dot1x max-users authentication order show dot1x interface
dot1x port-control authentication priority show dot1x interface
statistics
dot1x re-authenticate authentication restart show dot1x users
dot1x reauthentication clear authentication
statistics
clear dot1x
authentication–history
dot1x system-auth-control dot1x guest-vlan
2CSNXXX_SWUM200.book Page 844 Tuesday, December 10, 2013 1:22 PM