Configuring Switch As A Supplicant - Cisco Catalyst 4500 Series Configuration Manual
Release ios xe 3.3.0sg and ios 15.1(1)sg
Hide thumbs
Also See for Catalyst 4500 Series:
- Software configuration manual (2086 pages) ,
- Administration manual (1814 pages) ,
- Configuration manual (1254 pages)
Table of Contents
Advertisement
Chapter 44
Configuring 802.1X Port-Based Authentication
Current configuration : 149 bytes
!
interface GigabitEthernet5/23
switchport mode trunk
authentication port-control auto
dot1x pae authenticator
spanning-tree portfast trunk
end
Switch#
NEAT changes the port configuration on the authenticator switch. So, to perform ISSU from one version
that supports NEAT to another that does not support NEAT, you must first deactivate NEAT on all switch
ports for ISSU. Similarly, NEAT cannot activate when ISSU is in progress. If a supplicant switch tries
to authenticate during ISSU, authorization would fail on the port.
Configuring Switch as a Supplicant
The Catalyst 4500 series switch does not support supplicant switch functionality. The following
Note
supplicant specific commands are mentioned for a quick reference. For more details, see the
Catalyst 3750 Switch Software Configuration Guide.
To configure a switch as a supplicant, perform this task:
Command
Step 1
Switch# configure terminal
Step 2
Switch(config)# cisp enable
Step 3
Switch(config)# dot1x credentials
profile
Step 4
Switch(config)# sername suppswitch
Step 5
Switch(config)# password password
Step 6
Switch(config)# dot1x supplicant
force-multicast
Step 7
Switch(config)# interface
interface-id
Step 8
Switch(config-if)# switchport
trunk encapsulation dot1q
Step 9
Switch(config-if)# switchport mode
trunk
Step 10
Switch(config-if)# dot1x pae
supplicant
Step 11
Switch(config-if)# dot1x
credentials profile-name
Step 12
Switch(config-if)# end
OL-25340-01
Purpose
Enters global configuration mode.
Enables CISP.
Creates 802.1x credentials profile. This must be attached to the port that
is configured as supplicant.
Creates a username.
Creates a password for the new username.
Forces the switch to send only multicast EAPOL packets when it
receives either unicast or multicast packets.
This also allows NEAT to work on the supplicant switch in all host
modes.
Specifies the port to be configured, and enter interface configuration
mode.
Sets the port to trunk mode.
Configures the interface as a VLAN trunk port.
Configures the interface as a port access entity (PAE) supplicant.
Attaches the 802.1x credentials profile to the interface.
Returns to privileged EXEC mode.
Software Configuration Guide—Release IOS XE 3.3.0SG and IOS 15.1(1)SG
Configuring 802.1X Port-Based Authentication
44-89
- Quick Links:
- Resetting a Switch to Factory Default...
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
