Cisco Catalyst 4500 Series Configuration Manual page 1024
Release ios xe 3.3.0sg and ios 15.1(1)sg
Hide thumbs
Also See for Catalyst 4500 Series:
- Software configuration manual (2086 pages) ,
- Administration manual (1814 pages) ,
- Configuration manual (1254 pages)
Table of Contents
Advertisement
Configuring 802.1X Port-Based Authentication
Command
Step 5
Cisco IOS Release 12.2(50)SG and later
Switch(config-if)# authentication
event no-response action authorize
vlan vlan-id
Cisco IOS Release 12.2(46)SG or earlier
releases
Switch(config-if)# dot1x guest-vlan
vlan-id
Step 6
Cisco IOS Release 12.2(50)SG and later
Switch(config-if)# authentication
port-control auto
Cisco IOS Release 12.2(46)SG or earlier
releases
Switch(config-if)# dot1x
port-control auto
Step 7
Switch(config-if)# end
Step 8
Switch(config)# end
This example shows how to enable regular VLAN 50 on Fast Ethernet 4/3 as a guest VLAN on a static
access port:
Cisco IOS Release 12.2(50)SG and later
Switch# configure terminal
Switch(config)# interface fa4/3
Switch(config-if)# switchport mode access
Switch(config-if)# dot1x pae authenticator
Switch(config-if)# authentication event no-response action authorize vlan 50
Switch(config-if)# authentication port-control auto
Switch(config-if)# end
Switch#
Cisco IOS Release 12.2(46)SG or earlier
Switch# configure terminal
Switch(config)# interface fa4/3
Switch(config-if)# switchport mode access
Switch(config-if)# dot1x pae authenticator
Switch(config-if)# dot1x guest-vlan 50
Switch(config-if)# dot1x port-control auto
Switch(config-if)# end
Switch#
This example shows how to enable a secondary PVLAN 100 as a guest VLAN on a PVLAN host port:
Cisco IOS Release 12.2(50)SG and later
Switch# configure terminal
Switch(config)# interface fa4/3
Switch(config-if)# switchport mode private-vlan host
Switch(config-if)# authentication port-control auto
Switch(config-if)# authentication event no-response action authorize vlan 100
Switch(config-if)# end
Switch#
Software Configuration Guide—Release IOS XE 3.3.0SG and IOS 15.1(1)SG
44-56
Chapter 44
Purpose
Enables a guest VLAN on a particular interface.
To disable the guest VLAN feature on a particular port, use the
no authentication event no-response action authorize vlan interface
configuration command (for earlier releases, use the no dot1x guest-vlan
interface configuration command).
Enables 802.1X authentication on the interface.
Returns to configuration mode.
Returns to privileged EXEC mode.
Configuring 802.1X Port-Based Authentication
OL-25340-01
- Quick Links:
- Resetting a Switch to Factory Default...
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
