Specifications
Security Configuration Command Set
Configuring 802.1X Authentication
11-20 SecureStack B2 Configuration Guide
11.3.2.4 set dot1x auth-config
Use this command to configure 802.1X authentication.
set dot1x auth-config {[authcontrolled-portcontrol {auto | forced-auth |
forced-unauth}] [keytxenabled{false | true}] [maxreq value] [quietperiod
value] [reauthenabled {false | true}] [reauthperiod value] [servertimeout
timeout] [supptimeout timeout] [txperiod value]} [port-string]
Syntax Description
authcontrolled-
portcontrol auto |
forced-auth |
forced-unauth
Specifies the EAPOL port control mode as:
• auto - Auto authorization mode (default). The
SecureStack system will only forward frames received
on a port which are considered authenticated according
to the state of the corresponding access entity. For
details on this mode, refer to Table 11-3.
• forced-auth - Forced authorized mode, which
effectively disables 802.1X authentication on the port,
and allows all frames received on the port to be
forwarded.
• forced-unauth - Forced unauthorized mode, which
effectively disables 802.1X authentication on the port.
When 802.1X is the only active authentication agent on
a given port, this setting means all frames received will
be dropped.
keytxenabled
false | true
Enables (true) or disables (false) 802.1X key transmission
by the authenticator PAE state machine.
maxreq value Specifies the maximum number of authentication requests
allowed by the backend authentication state machine. Valid
values are 1 - 10.
quietperiod value Specifies the time (in seconds) following a failed
authentication before another attempt can be made by the
authenticator PAE state machine. Valid values are 0 -
65535.