Dot1X - Cisco catalyst 3750 Command Reference Manual
Hide thumbs
Also See for catalyst 3750:
- Software configuration manual (926 pages) ,
- Command reference manual (854 pages) ,
- Hardware installation manual (231 pages)
Table of Contents
Advertisement
dot1x
dot1x
Use the dot1x global configuration command to globally enable IEEE 802.1x authentication. Use the no
form of this command to return to the default setting.
Though visible in the command-line help strings, the credentials name keywords are not supported.
Note
Syntax Description
critical {eapol |
recovery delay
milliseconds}
guest-vlan supplicant
system-auth-control
Defaults
IEEE 802.1x authentication is disabled, and the optional guest VLAN behavior is disabled.
Command Modes
Global configuration
Command History
Release
12.1(14)EA1
12.2(25)SE
12.2(25)SEE
Usage Guidelines
You must enable authentication, authorization, and accounting (AAA) and specify the authentication
method list before globally enabling IEEE 802.1x authentication. A method list describes the sequence
and authentication methods to be used to authenticate a user.
Before globally enabling IEEE 802.1x authentication on a switch, remove the EtherChannel
configuration from the interfaces on which IEEE 802.1x authentication and EtherChannel are
configured.
If you are using a device running the Cisco Access Control Server (ACS) application for IEEE 802.1x
authentication with EAP-Transparent LAN Services (TLS) and with EAP-MD5 and your switch is
running Cisco IOS Release 12.1(14)EA1, make sure that the device is running ACS Version 3.2.1 or
later.
You can use the guest-vlan supplicant keywords to enable the optional IEEE 802.1x guest VLAN
behavior globally on the switch. For more information, see the
Catalyst 3750 Switch Command Reference
2-128
dot1x {critical {eapol | recovery delay milliseconds} | {guest-vlan supplicant} |
system-auth-control}
no dot1x {critical {eapol | recovery delay} | {guest-vlan supplicant} | system-auth-control}
Configure the inaccessible authentication bypass parameters. For more
information, see the
Enable optional guest VLAN behavior globally on the switch.
Enable IEEE 802.1x authentication globally on the switch.
Modification
This command was introduced.
The guest-vlan supplicant keywords were added.
The critical {eapol | recovery delay milliseconds} keywords were added.
Chapter 2
Catalyst 3750 Switch Cisco IOS Commands
dot1x critical (global configuration)
dot1x guest-vlan
command.
command.
OL-8552-07
Advertisement
Chapters
Table of Contents
