Configuring Port-Based Access Control (802.1x)
Configuring Switch Ports as 802.1x Authenticators
5-10
7.
If you are using Port Security on the switch, configure the switch to allow
only 802.1x access on ports configured for 802.1x operation, and (if
desired) the action to take if an unauthorized device attempts access
through an 802.1x port. See page 5-15.
8.
Configure 802.1x supplicant management on designated ports. See page
5-17.
Configuring Switch Ports as 802.1x
Authenticators
802.1x Authentication Commands
[no] aaa port-access authenticator < [ethernet] < port-list >
[ control | quiet-period | tx-period | supplicant-timeout |
server-timeout | max-requests | reauth-period | initialize |
reauthenticate | clear-statistics ]
aaa authentication port-access
< local | eap-radius | chap-radius >
[no] aaa port-access authenticator active
[ no ] port-security [ ethernet ] < port-list > learn-mode port-access
802.1x Supplicant Commands
802.1x-Related Show Commands
RADIUS server configuration
1. Disable LACP on the Ports Selected for 802.1x Access
Syntax: no interface [ e ] < port-list > lacp
Disables LACP on the designated ports.
Use show lacp to verify that LACP is disabled on the desired ports.
Table
5-11
5-11
5-13
5-16
5-15
5-17
5-21
5-14