Huawei Quidway S3900 series Command Manual page 520
Hide thumbs
Also See for Quidway S3900 series:
- Specifications (9 pages) ,
- Installation manual (95 pages) ,
- Operation manual (955 pages)
Table of Contents
Advertisement
Command Manual – 802.1x
Quidway S3900 Series Ethernet Switches-Release 1510
View
System view, Ethernet port view
Parameter
auto: Specifies to operate in auto access control mode. In this mode, a port is
initialized to take all users as unauthorized: it only allows EAPoL packets to pass
through and grants users no permission to network resources. Only after the users
have passed the authentication will the port classify them as authorized and allow them
access to the network resources, which is often the case.
authorized-force: Specifies to operate in authorized-force access control mode.
unauthorized-force: Specifies to operate in unauthorized-force access control mode.
Ports in this mode are constantly in unauthorized state. Supplicant systems connected
to them cannot access the network.
interface-list: Ethernet port list. You can specify multiple Ethernet ports by providing this
argument in the form of interface-list = { interface-name [ to interface- name] & < 1-10 >.
The interface-name argument is the port index of an Ethernet port and can be specified
in this form: interface-name = { interface-type interface-num }, in which, interface-type
specifies the type of a port and interface-num identifies the port number. Note that the
interface name after the keyword to must have an interface-num that is greater than or
equal to that of the interface-name before the to keyword. &<1-10> means that up to 10
port indexes/port index lists can be provided.
Description
Use the dot1x port-control command to specify the access control method for
specified Ethernet ports.
Use the undo dot1x port-control command to revert to the default access control
method.
The default access control method is auto.
Use the dot1x port-control command to configure the access control method for
specified 802.1x-enabled ports.
When being executed in system view, these two commands apply to all Ethernet ports
of the switch if you do not provide the interface-list argument. And if you specify the
interface-list argument, these commands apply to the specified Ethernet ports.
When being executed in Ethernet port view, these two commands apply to the current
Ethernet port only. In this case, the interface-list argument is not needed.
Related command: display dot1x.
Example
# Specify Ethernet1/0/1 port to operate in unauthorized-force access control mode.
<Quidway> system-view
Huawei Technologies Proprietary
1-11
Chapter 1 802.1x Configuration Commands
- Quick Links:
- Cli Configuration Commands
Hide quick links:
Advertisement
Chapters
Table of Contents
