Displaying And Maintaining 802.1X Configuration; Configuration Example - 3Com 5500-EI PWR Install Manual
Hide thumbs
Also See for 5500-EI PWR:
- Reference manual (1314 pages) ,
- Getting started manual (118 pages) ,
- Quick reference manual (59 pages)
Table of Contents
Advertisement
Displaying and Maintaining 802.1x Configuration
To do...
Display the configuration,
session, and statistics
information about 802.1x
Clear 802.1x-related statistics
information
Configuration Example
802.1x Configuration Example
Network requirements
Authenticate users on all ports to control their accesses to the Internet. The switch operates in
MAC-based access control mode.
All supplicant systems that pass the authentication belong to the default domain named
"aabbcc.net". The domain can accommodate up to 30 users. As for authentication, a supplicant
system is authenticated locally if the RADIUS server fails. And as for accounting, a supplicant
system is disconnected by force if the RADIUS server fails. The name of an authenticated
supplicant system is not suffixed with the domain name. A connection is terminated if the total size
of the data passes through it during a period of 20 minutes is less than 2,000 bytes.
The switch is connected to a server comprising of two RADIUS servers whose IP addresses are
10.11.1.1 and 10.11.1.2. The RADIUS server with an IP address of 10.11.1.1 operates as the
primary authentication server and the secondary accounting server. The other operates as the
secondary authentication server and primary accounting server. The password for the switch and
the authentication RADIUS servers to exchange message is "name". And the password for the
switch and the accounting RADIUS servers to exchange message is "money". The switch sends
another packet to the RADIUS servers again if it sends a packet to the RADIUS server and does
not receive response for 5 seconds, with the maximum number of retries of 5. And the switch sends
a real-time accounting packet to the RADIUS servers once in every 15 minutes. A user name is
sent to the RADIUS servers with the domain name truncated.
The user name and password for local 802.1x authentication are "localuser" and "localpass" (in
plain text) respectively. The idle disconnecting function is enabled.
Use the command...
display dot1x [ sessions |
statistics ] [ interface
interface-list ]
reset dot1x statistics
[ interface interface-list ]
1-20
Remarks
Available in any view
Available in user view
Advertisement
Chapters
Table of Contents
Troubleshooting
