Dot1X Single-Host-Violation - Alcatel OS-LS-6224 User Manual
User guide
Hide thumbs
Also See for OS-LS-6224:
- Getting started manual (60 pages) ,
- User manual (762 pages) ,
- Getting started manual (52 pages)
Table of Contents
Advertisement
Parameters
• authentication — Specifies that each station should be 802.1x
authenticated.
Default Configuration
Multiple hosts are disabled.
Command Mode
Interface Configuration (Ethernet) mode
Command Usage
This command enables the attachment of multiple clients to a single
802.1X-enabled port.
If you use this command without the authentication keyword, only one of the
attached hosts must be successfully authorized for all hosts to be granted
network access. If the port becomes unauthorized, all attached clients are
denied access to the network.
If you use this command with the authentication keyword, each host must be
successfully authorized in order to grant network access. Please note that
packets are NOT encrypted, and after success full authentication filtering is
based on the source MAC address only.
For unauthenticated VLANs multiple hosts are always enabled.
Port security on a port cannot be enabled if the port if multiple hosts are
disabled or multiple hosts are enabled with authentication per host.
Example
The following command enables multiple hosts (clients) on an 802.1X-authorized
port.
Console(config-if)# dot1x multiple-hosts
Related Commands
dot1x single-host-violation
show dot1x advanced
dot1x single-host-violation
The dot1x single-host-violation Interface Configuration mode command
configures the action to be taken, when a station whose MAC address is not the
supplicant MAC address, attempts to access the interface. Use the no form of this
command to return to default.
Syntax
dot1x single-host-violation {forward | discard | discard-shutdown} [trap
seconds]
no port dot1x single-host-violation
802.1x Commands
287
4
- Quick Links:
- Chapter 2: Initial Configuration
Hide quick links:
Advertisement
Table of Contents
