Configuring Port-Based and Client-Based Access Control (802.1X)
Configuring Switch Ports To Operate As Supplicants for 802.1X Connections to Other Switches
N o t e
Port A1
Switch "A"
Port A1 Configured as an
802.1X Supplicant
Figure 10-4. Example of Supplicant Operation
10-38
Configuring Switch Ports To Operate As
Supplicants for 802.1X Connections to
Other Switches
802.1X Authentication Commands
802.1X Supplicant Commands
[no] aaa port-access < supplicant < [ethernet] < port-list >
[auth-timeout | held-period | start-period | max-start | initialize |
identity | secret | clear-statistics]
802.1X-Related Show Commands
RADIUS server configuration
A switch port can operate as a supplicant in a connection to a port on another
802.1X-aware switch to provide security on links between 802.1X-aware
switches. (A port can operate as both an authenticator and a supplicant.)
This operation is not recommended on 5300xl switches with software
release E.09.xx or later where a port on the 5300xl switch would be used as
an authenticator for a supplicant port configured on another switch.
Example
Suppose that you want to connect two switches, where:
■
Switch "A" has port A1 configured for 802.1X supplicant operation.
■
You want to connect port A1 on switch "A" to port B5 on switch "B".
Switch "B"
Port B5
LAN Core
page 10-15
page 10-40
page 10-40
page 10-42
pages 10-20
RADIUS Server