Deployment Guide

ManualsBrandsDell ManualsAccess PlatformsFN IO Module

131

132

133

134

135

136

137

138

139

140

Related Commands

• dot1x port-control — Enables port control on an interface.

• dot1x guest-vlan — Congures a guest VLAN for limited access users or for devices that are not 802.1X

capable.

• show dot1x interface — Displays the 802.1X conguration of an interface.

dot1x auth-server

Congure the authentication server to RADIUS.

Syntax

dot1x auth-server radius

Defaults none

Command Modes CONFIGURATION

Supported Modes Full–Switch

Command History

Version Description

9.9(0.0) Introduced on the FN IOM.

9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.

dot1x auth-type mab-only

To authenticate a device with MAC authentication bypass (MAB), only use the host MAC address.

Syntax

dot1x auth-type mab-only

Defaults Disabled

Command Modes INTERFACE

Supported Modes Full–Switch

Command History

Version Description

9.9(0.0) Introduced on the FN IOM.

9.2(0.0) Introduced on the MXL 10/40GbE Switch IO Module.

Usage Information

The prerequisites for enabling MAB-only authentication on a port are:

• Enable 802.1X authentication globally on the switch and on the port (the dot1x authentication

command).

• Enable MAC authentication bypass on the port (the dot1x mac-auth-bypass command).

In MAB-only authentication mode, a port authenticates using the host MAC address even though

802.1xauthentication is enabled. If the MAB-only authentication fails, the host is placed in the guest VLAN (if

congured).

To disable MAB-only authentication on a port, enter the no dot1x auth-type mab-only command.

Related Commands dot1x mac-auth-bypass — Enables MAC authentication bypass.

136 802.1X