Configuring Critical Vlan - Dell S6100 Configuration Manual

Dell(conf-if-Te 2/1))#show dot1x interface TenGigabitEthernet 2/1
802.1x information on Te 2/1:
-----------------------------
Dot1x Status:
Port Control:
Port Auth Status:
Re-Authentication:
Untagged VLAN id:
Guest VLAN:
Guest VLAN id:
Auth-Fail VLAN:
Auth-Fail VLAN id:
Auth-Fail Max-Attempts:3
Critical VLAN:
Critical VLAN id:
Mac-Auth-Bypass Only:
Static-MAB:
Static-MAB Profile:
Tx Period:
Quiet Period:
ReAuth Max:
Supplicant Timeout:
Server Timeout:
Re-Auth Interval:
Max-EAP-Req:
Auth Type:
Auth PAE State:
Backend State:

Configuring Critical VLAN

By default, critical-VLAN is not configured. If authentication fails because of a server which is not reachable, user session is authenticated
under critical-VLAN.
To configure a critical-VLAN for users or devices when authenticating server is not reachable, use the following command.
• Enable critical VLAN for users or devices
INTERFACE mode
dot1x critical-vlan [{vlan-id}]
Specify a VLAN interface identifier to be configured as a critical VLAN. The VLAN ID range is 1– 4094.
Example of Configuring a Critical VLAN for an Interface
Dell(conf-if-Te-2/1)#dot1x critical-vlan 300
Dell(conf-if-Te 2/1)#show config
!
interface TenGigabitEthernet 2/1
switchport
dot1x critical-vlan 300
no shutdown
Dell#show dot1x interface tengigabitethernet 2/1
802.1x information on Te 2/1:
------------------------------------------------------
Dot1x Status:
Port Control:
Port Auth Status:
Critical VLAN
Critical VLAN id:
Re-Authentication:
Untagged VLAN id:
Enable
Auto
AUTHORIZED(STATIC-MAB)
Disable
None
Enable
100
Enable
200
Enable
300
Disable
Enable
Sample
90 seconds
120 seconds
10
30 seconds
30 seconds
7200 seconds
10
SINGLE_HOST
Authenticated
Idle
Enable
AUTO
AUTHORIZD(MAC-AUTH-BYPASS)
Enable
300
Disable
400
802.1X 87