Cisco Catalyst 4500 series Administration Manual page 1179
Hide thumbs
Also See for Catalyst 4500 series:
- Software configuration manual (2086 pages) ,
- Configuration manual (1610 pages) ,
- Command reference manual (1230 pages)
Table of Contents
Advertisement
Chapter 46
Configuring 802.1X Port-Based Authentication
switchport voice vlan 1234
access-group mode prefer port
ip access-group pacl-4 in
speed 100
duplex full
authentication event fail action authorize vlan 111
authentication event server dead action authorize vlan 333
authentication event server alive action reinitialize
authentication host-mode multi-auth
authentication order dot1x
authentication port-control auto
authentication timer restart 100
authentication timer reauthenticate 20
authentication timer inactivity 200
mab eap
dot1x pae authenticator
end
Switch#
Switch# show ip access-list pacl-4
Switch#
Debug Commands for DACL
The IP device tracking table contains the host IP address learned through ARP or DHCP.
The following command displays the constraints on the IP device tracking table:
Switch# show ip device tracking all
IP Device Tracking = Enabled
IP Device Tracking Probe Count = 3
IP Device Tracking Probe Interval = 30
--------------------------------------------------------------
IP Address
--------------------------------------------------------------
50.0.0.12
The following show authentication sessions command displays the authentication sessions that
contains the downloadable ACL obtained from ACS:
The show epm command will be deprecated, displaying a warning message when used. Use the show
Note
authentication sessions command instead.
Switch-2033# show authentication sessions interface g2/9 details
OL_28731-01
10 permit ip host 1.1.1.1 host 2.2.2.2
20 permit icmp host 1.1.1.1 host 2.2.2.2
MAC Address
0015.60a4.5e84 GigabitEthernet2/9
Interface:
GigabitEthernet2/9
MAC Address:
2c54.2d6a.0345
IPv6 Address:
Unknown
IPv4 Address:
8.8.8.11
User-Name:
2C-54-2D-6A-03-45
Status:
Authorized
Domain:
DATA
Oper host mode:
multi-auth
Oper control dir:
both
Session timeout:
N/A
Common Session ID:
0404040400000610081AA183
Acct Session ID:
0x000006F2
Handle:
0x760005B9
Current Policy:
POLICY_Gi2/9
Interface
Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E
Configuring 802.1X Port-Based Authentication
STATE
ACTIVE
46-41
Advertisement
Chapters
Table of Contents
Troubleshooting
