User Manual

ManualsBrandsYamaha ManualsProfessional AudioL2 Gigabit Dante Switch

101

102

103

104

105

106

107

108

109

110

Operation mode for port authentication Description

single-host

This mode allows communications for only one

supplicant per port. Only the first supplicant that

passes authentication is allowed.

multi-host

This mode allows communication with multiple

supplicants for each port. If the first supplicant

passes authentication, all other supplicants of the

same port will be allowed to communicate

without authentication.

[Initial value]

auth host-mode single-host

[Input mode]

interface mode

[Description]

Changes the port authentication operation mode for the applicable interface.

If this command is executed with the "no" syntax, the setting returns to the default.

[Note]

This command can be specified only for LAN/SFP port.

Changing the settings for this command will make the authentication state return to the default.

When using dynamic VLAN in multi-host mode, the VLAN ID applied by the first supplicant will be applied to supplicants

from the second onwards.

To use this command, you must enable the port authentication function for the applicable interface. (dot1x port-control

command, auth-mac enable command)

[Example]

Change the LAN port #1 to multi host mode.

SWP1(config)#interface ge1

SWP1(config-if)#auth host-mode multi-host

10.3.9 Set re-authentication

[Syntax]

auth reauthentication

no auth reauthentication

[Initial value]

no auth reauthentication

[Input mode]

interface mode

[Description]

Enables reauthentication of supplicants for the applicable interface.

If this is executed with the "no" syntax, the re-authentication is disabled.

When this setting is enabled, this periodically reauthenticates supplicants that have been successfully authenticated.

The reauthentication interval can be changed using the auth timeout reauth-period command.

[Note]

This command can be specified only for LAN/SFP port.

During IEEE 802.1X authentication, an EAPOL packet is transmitted to the supplicant at the timing for reauthentication to once

again retrieve the user information, and an authentication request is sent to the RADIUS server.

During MAC authentication, the supplicant's MAC address is regarded as a user name and password at the timing for

reauthentication, and a request is sent to the RADIUS server for authentication.

To use this command, you must enable the port authentication function for the applicable interface. (dot1x port-control

command, auth-mac enable command)

[Example]

Enable re-authenticatio of LAN port #1.

110 | Command Reference | LAN/SFP port control