Reference Guide
802.1X | 171
Command Modes
INTERFACE
Command
History
Usage
Information
• Single-host mode authenticates only one host per authenticator port, and drops all
other traffic on the port.
• Multi-host mode authenticates the first host to respond to an Identity Request,
and then permits all other traffic on the port.
• Multi-supplicant mode authenticates every device attempting to connect to the
network on through the authenticator port.
dot1x mac-auth-bypass
c s
Enable MAC authentication bypass. If 802.1X times out because the host did not respond to
the Identity Request frame, FTOS attempts to authenticate the host based on its MAC address.
Syntax
dot1x mac-auth-bypass
Defaults
Disabled
Command Modes
INTERFACE
Command
History
Usage
Information
To disable MAC authentication bypass on a port, enter the no dot1x mac-auth-bypass
command.
dot1x max-eap-req
c e s
Configure the maximum number of times an EAP (Extensive Authentication Protocol)
request is transmitted before the session times out.
Syntax
dot1x max-eap-req number
To return to the default, use the no dot1x max-eap-req command.
Parameters
Version 8.3.12.0 Introduced on the S4810.
Version 8.4.1.0 The multi-auth option was introduced on the C-Series and S-Series.
Version 8.3.2.0 The single-host and multi-host options were introduced on the
C-Series, E-Series, and S-Series
Version 8.3.12.0 Introduced on the S4810.
Version 8.4.1.0 Introduced on C-Series and S-Series
number Enter the number of times an EAP request is transmitted before a session
time-out.
Range: 1 to 10
Default: 2