Authentication Port-Control - Cisco Catalyst 4500 Series Command Reference Manual
Cisco ios command reference release ios xe 3.4.0sg and ios 15.1(2)sg
Hide thumbs
Also See for Catalyst 4500 Series:
- Software configuration manual (2086 pages) ,
- Administration manual (1814 pages) ,
- Configuration manual (1610 pages)
Table of Contents
Advertisement
authentication port-control
authentication port-control
To configure the port-control value, use the authentication port-control command in interface
configuration mode. To return to the default setting, use the no form of this command.
Syntax Description
auto
force-authorized
force-unauthorized
Command Default
force-authorized
Command Modes
Interface configuration mode
Command History
Release
12.2(50)SG
Usage Guidelines
The authentication port-control command replaces the following dot1x command, which is deprecated
in Cisco IOS Release 12.2(50)SG and later releases:
[no] dot1x port-control [auto | force-authorized | force-unauthorized]
The following guidelines apply to Ethernet switch network modules:
•
•
Catalyst 4500 Series Switch Cisco IOS Command Reference—Release IOS XE 3.4.0SG and IOS 15.1(2)SG)
2-36
authentication port-control [auto | force-authorized | force-unauthorized]
no authentication port-control
(Optional) Enables 802.1X port-based authentication and causes the port to
begin in the unauthorized state.
(Optional) Disables 802.1X on the interface and causes the port to change
to the authorized state without any authentication exchange required. The
port transmits and receives normal traffic without 802.1X-based
authentication of the client. The force-authorized keyword is the default.
(Optional) Denies all access through this interface by forcing the port to
change to the unauthorized state, ignoring all attempts by the client to
authenticate.
Modification
Support for this command was introduced.
The 802.1X protocol is supported on Layer 2 static-access ports.
You can use the auto keyword only if the port is not configured as one of the following types:
–
Trunk port—If you try to enable 802.1X on a trunk port, an error message appears, and 802.1X
is not enabled. If you try to change the mode of an 802.1X-enabled port to trunk, the port mode
is not changed.
EtherChannel port—Before enabling 802.1X on the port, you must first remove it from the
–
EtherChannel. If you try to enable 802.1X on an EtherChannel or on an active port in an
EtherChannel, an error message appears, and 802.1X is not enabled. If you enable 802.1X on a
not-yet active port of an EtherChannel, the port does not join the EtherChannel.
Chapter 2
Cisco IOS Commands for the Catalyst 4500 Series Switches
OL-27596 -01
- Quick Links:
- Show Commands
Hide quick links:
Advertisement
Table of Contents
