Manualshelf

Service Manual

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON
1291129212931294129512961297129812991300
Version Description
7.6.1.0 Introduced on the C-Series and S-Series.
7.4.1.0 Introduced on the E-Series.
dot1x guest-vlan
Congure a guest VLAN for limited access users or for devices that are not 802.1X capable.
Syntax
dot1x guest-vlan vlan-id
To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command.
Parameters
vlan-id Enter the VLAN Identier. The range is from 1 to 4094.
Defaults Not congured.
Command Modes CONFIGURATION (conf-if-interface-slot/port)
Command History
This guide is platform-specic. For command information about other platforms, refer to the relevant Dell
Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version Description
9.8(0.0) Introduced on the S3048-ON and S4048-ON.
9.7(0.0) Introduced on the S6000–ON.
9.0.2.0 Introduced on the S6000.
8.3.19.0 Introduced on the S4820T.
8.3.11.1 Introduced on the Z9000.
8.3.7.0 Introduced on the S4810.
7.6.1.0 Introduced on the C-Series, S-Series, and E-Series.
Usage Information
802.1X authentication is enabled when an interface is connected to the switch. If the host fails to respond
within a designated amount of time, the authenticator places the port in the guest VLAN.
If a device does not respond within 30 seconds, it is assumed that the device is not 802.1X capable.
Therefore, a guest VLAN is allocated to the interface and authentication for the device occurs at the next
re-authentication interval (dot1x reauthentication).
If the host fails authentication for the designated number of times, the authenticator places the port in
authentication failed VLAN (dot1x auth-fail-vlan).
NOTE: The layer 3 portion of guest VLAN and authentication fail VLANs can be created regardless
if the VLAN is assigned to an interface or not. After an interface is assigned a guest VLAN (which
has an IP address), routing through the guest VLAN is the same as any other trac. However, the
interface may join/leave a VLAN dynamically.
Related Commands
dot1x auth-fail-vlancongures a VLAN for authentication failures.
Security
1299