Chapter 9
Configuring IEEE 802.1x Port-Based Authentication
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Default IEEE 802.1x Authentication Configuration
Table 9-2
Table 9-2
Default IEEE 802.1x Authentication Configuration
Feature
Switch IEEE 802.1x enable state
Per-port IEEE 802.1x enable state
AAA
RADIUS server
IP address
•
UDP authentication port
•
Key
•
Host mode
Control direction
Periodic re-authentication
Number of seconds between
re-authentication attempts
Re-authentication number
Quiet period
OL-8603-04
Changing the Quiet Period, page 9-26
Configuring the Inaccessible Authentication Bypass Feature, page 9-33
Configuring IEEE 802.1x Authentication with WoL, page 9-35
Configuring MAC Authentication Bypass, page 9-36
Configuring NAC Layer 2 IEEE 802.1x Validation, page 9-37
Configuring Web Authentication, page 9-38
Disabling IEEE 802.1x Authentication on the Port, page 9-40
Resetting the IEEE 802.1x Authentication Configuration to the Default Values, page 9-41
shows the default IEEE 802.1x authentication configuration.
Default Setting
Disabled.
Disabled (force-authorized).
The port sends and receives normal traffic without IEEE 802.1x-based
authentication of the client.
Disabled.
None specified.
•
1812.
•
None specified.
•
Single-host mode.
Bidirectional control.
Disabled.
3600 seconds.
2 times (number of times that the switch restarts the authentication process
before the port changes to the unauthorized state).
60 seconds (number of seconds that the switch remains in the quiet state
following a failed authentication exchange with the client).
(optional)
(optional)
(optional)
(optional)
(optional)
(optional)
(optional)
(optional)
(optional)
(optional)
(optional)
Catalyst 2960 Switch Software Configuration Guide
Configuring IEEE 802.1x Authentication
(optional)
(optional)
(optional)
9-19