Cisco Catalyst 4500 Series Software Configuration Manual page 1310
Cisco ios xe release 3.9.xe and cisco ios release 15.2(5)ex
Hide thumbs
Also See for Catalyst 4500 Series:
- Administration manual (1814 pages) ,
- Configuration manual (1610 pages) ,
- Command reference manual (1230 pages)
Table of Contents
Advertisement
Configuring 802.1X Port-Based Authentication
Command
Step 8
Switch(config-if)# dot1x pae
authenticator
Step 9
Cisco IOS Release 12.2(50)SG and later
Switch(config-if)# authentication
port-control auto
Cisco IOS Release 12.2(46)SG or earlier
releases
Switch(config-if)# dot1x
port-control auto
Step 10
Switch(config-if)# end
Step 11
Switch # show dot1x interface
interface-id details
Step 12
Switch# show running-config
Step 13
Switch# copy running-config
startup-config
Note
Enabling Spanning Tree PortFast ensures that a port comes up immediately after authorization.
Note
Whenever you configure any 802.1X parameter on a port, a dot1x authenticator is automatically created
on the port. As a result, dot1x pae authenticator appears in the configuration, ensuring that dot1x
authentication still works on legacy configurations without manual intervention.
This example shows how to enable 802.1X and AAA on Fast Ethernet port 2/1, and how to verify the configuration:
Cisco IOS Release 12.2(50)SG and later
Switch# configure terminal
Switch(config)# dot1x system-auth-control
Switch(config)# aaa new-model
Switch(config)# aaa authentication dot1x default group radius
Switch(config)# interface fastethernet2/1
Switch(config-if)# switchport mode access
Switch(config-if)# dot1x pae authenticator
Switch(config-if)# authentication port-control auto
Switch(config-if)# end
Switch# show authentication sessions interface f9/2
Interface:
MAC Address:
IP Address:
Status:
Domain:
Oper host mode:
Oper control dir:
Session timeout:
Idle timeout:
Common Session ID:
Acct Session ID:
Handle:
Catalyst 4500 Series Switch, Cisco IOS Software Configuration Guide - Cisco IOS XE 3.9.xE and IOS 15.2(5)Ex
49-30
Purpose
Enables 802.1X authentication on the port with default parameters.
Refer to the
Enables 802.1X authentication on the interface.
Returns to privileged EXEC mode.
Verifies your entries.
Check the PortControl row in the 802.1X port summary section of this
display. The PortControl value is set to auto.
Verifies your entries.
(Optional) Saves your entries in the configuration file.
FastEthernet9/2
0007.e95d.83c4
Unknown
Running
UNKNOWN
single-host
both
N/A
N/A
0A050B160000009505106398
0x0000009B
0x0D000095
Chapter 49
Configuring 802.1X Port-Based Authentication
"Default 802.1X Configuration" section on page
49-27.
Advertisement
Chapters
Table of Contents
Troubleshooting
