9-9
Catalyst 3550 Multilayer Switch Software Configuration Guide
78-11194-09
Chapter 9 Configuring 802.1X Port-Based Authentication
Configuring 802.1X Authentication
Configuring 802.1X Authentication
These sections describe how to configure 802.1X port-based authentication on your switch:
• Default 802.1X Configuration, page 9-9
• 802.1X Configuration Guidelines, page 9-10
• Upgrading from a Previous Software Release, page 9-11
• Enabling 802.1X Authentication, page 9-11 (required)
• Configuring the Switch-to-RADIUS-Server Communication, page 9-13 (required)
• Enabling Periodic Re-Authentication, page 9-14 (optional)
• Manually Re-Authenticating a Client Connected to a Port, page 9-14 (optional)
• Changing the Quiet Period, page 9-15 (optional)
• Changing the Switch-to-Client Retransmission Time, page 9-15 (optional)
• Setting the Switch-to-Client Frame-Retransmission Number, page 9-16 (optional)
• Configuring the Host Mode, page 9-17 (optional)
• Configuring a Guest VLAN, page 9-17 (optional)
• Resetting the 802.1X Configuration to the Default Values, page 9-18 (optional)
Default 802.1X Configuration
Table 9-1 shows the default 802.1X configuration.
Table 9-1 Default 802.1X Configuration
Feature Default Setting
Authentication, authorization, and
accounting (AAA)
Disabled.
RADIUS server
• IP address
• UDP authentication port
• Key
• None specified.
• 1812.
• None specified.
Switch 802.1X enable state Disabled.
Per-interface 802.1X enable state Disabled (force-authorized).
The port sends and receives normal traffic without
802.1X-based authentication of the client.
Periodic re-authentication Disabled.
Number of seconds between
re-authentication attempts
3600 seconds.
Quiet period 60 seconds (number of seconds that the switch remains in
the quiet state following a failed authentication exchange
with the client).
To Next Page
Loading...
Need help?
General
