Dot1X Auth-Server - Dell S6000 Reference Manual

Command line for the system

Hide thumbs Also See for S6000:

Table of Contents

To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan

vlan-id [max-attempts number] command.

max-attempts

CONFIGURATION (conf-if-interface-slot/port)

This guide is platform-specific. For command information about other platforms,

refer to the relevant Dell Networking OS Command Line Reference Guide.

The following is a list of the Dell Networking OS version history for this command.

Version 9.0.2.0

Version 8.3.7.0

Version 7.6.1.0

If the host responds to 802.1X with an incorrect login/password, the login fails. The

switch attempts to authenticate again until the maximum attempts configured is

reached. If the authentication fails after all allowed attempts, the interface is moved

to the authentication failed VLAN.

After the authentication VLAN is assigned, the port-state must be toggled to restart

authentication. Authentication occurs at the next re-authentication interval (dot1x

reauthentication).

dot1x port-control

dot1x guest-vlan

show dot1x interface

dot1x auth-server

Configure the authentication server to RADIUS.

dot1x auth-server radius

Enter the VLAN Identifier. The range is from 1 to 4094.

(OPTIONAL) Enter the keywords max-attempts then

number of attempts desired before authentication fails. The

range is from 1 to 5. The default is 3.

Introduced on the S6000.

Introduced on the S4820T.

Introduced on the S4810.

Introduced on the C-Series, S-Series, and E-Series.

— enables port-control on an interface.

— configures a guest VLAN for non-dot1x devices.

— displays the 802.1X information on an interface.