Specifications
Command Groups
A-88
802.1x Port Authentication Commands
TheaccesspointsupportsIEEE802.1xaccesscontrolforwirelessclients.Thiscontrolfeature
preventsunauthorizedaccesstothenetworkbyrequiringa802.1xclientapplicationtosubmit
usercredentialsforauthentication.ClientauthenticationisthenverifiedviabyaRADIUSserver
usingEAP(ExtensibleAuthenticationProtocol)beforetheaccesspoint
grantsclientaccesstothe
network.Thecommandsarelistedin
Table A-13.
Table A-13 802.1x Access Control Commands
Command Function Mode Page
802.1x Configures 802.1x as disabled,
supported, or required
IC-W
IC-W: VAP
A-89
802.1x broadcast-key-refresh-rate Sets the interval at which the
primary broadcast keys are
refreshed for stations using
802.1x dynamic keying
IC-W
IC-W: VAP
A-91
802.1x session-key-refresh-rate Sets the interval at which unicast
session keys are refreshed for
associated stations using
dynamic keying
IC-W
IC-W: VAP
A-92
802.1x session-timeout Sets the timeout after which a
connected client must be re-
authenticated
IC-W
IC-W: VAP
A-93
802.1x supplicant Sets the username and
password used by the access
point to authenticate with the
network.
GC A-94
mac-access permission Sets filtering to allow or deny
listed addresses
IC-W
IC-W: VAP
A-95
mac-access entry Enters a MAC address in the
filter table
IC-W
IC-W: VAP
A-96
mac-authentication server Sets address filtering to be
performed with local or remote
options
IC-W
IC-W: VAP
A-97
mac-authentication session-
timeout
Sets the interval at which
associated clients will be re-
authenticated with the RADIUS
server authentication database
IC-W
IC-W: VAP
A-98
mac-authentication password Sets the password the AP sends
to the RADIUS server for
authenticating clients
IC-W
IC-W: VAP
A-99
show authentication Shows some 802.1x
authentication settings, as well
as the address filter table
Exec A-100
show interface wireless Shows some 802.11x
authentication settings
Exec A-151