Manualshelf

CLI Reference Guide-R01

ManualsBrandsEdgecore Networks ManualsEnterpriseCOMPACT SIZE, L2+/L3 Lite Gigabit Ethernet Switch
261262263264265266267268269270
Table Of Contents
Chapter 8
| Authentication Commands
802.1X Port Authentication
– 263 –
block-traffic - Blocks traffic on this port.
guest-vlan - Assigns the user to the Guest VLAN.
Default
block-traffic
Command Mode
Interface Configuration
Command Usage
For guest VLAN assignment to be successful, the VLAN must be configured and
set as active (see the vlan database command) and assigned as the guest VLAN
for the port (see the network-access guest-vlan command).
A port can only be assigned to the guest VLAN in case of failed authentication,
if switchport mode is set to Hybrid.
Example
Console(config)#interface eth 1/2
Console(config-if)#dot1x intrusion-action guest-vlan
Console(config-if)#
dot1x max-reauth-req This command sets the maximum number of times that the switch sends an EAP-
request/identity frame to the client before restarting the authentication process.
Use the no form to restore the default.
Syntax
dot1x max-reauth-req count
no dot1x max-reauth-req
count – The maximum number of requests (Range: 1-10)
Default
2
Command Mode
Interface Configuration
Example
Console(config)#interface eth 1/2
Console(config-if)#dot1x max-reauth-req 2
Console(config-if)#