HPE FlexNetwork HSR6800 Security Command Reference page 135
Hide thumbs
Also See for FlexNetwork HSR6800:
- Configuration manual (503 pages) ,
- Command reference manual (153 pages) ,
- Product end-of-life disassembly instructions (2 pages)
Table of Contents
Advertisement
Syntax
In system view:
dot1x port-method { macbased | portbased } [ interface interface-list ]
undo dot1x port-method [ interface interface-list ]
In Ethernet interface view:
dot1x port-method { macbased | portbased }
undo dot1x port-method
Default
MAC-based access control applies.
Views
System view, Ethernet interface view
Default command level
2: System level
Parameters
macbased: Uses MAC-based access control on a port to separately authenticate each user
attempting to access the network. If this method is used, when an authenticated user logs off, no
other online users are affected.
portbased: Uses port-based access control on a port. If this method is used, once an 802.1X user
passes authentication on the port, any subsequent user can access the network through the port
without authentication. When the authenticated user logs off, all other users are logged off.
interface interface-list: Specifies an Ethernet port list, which can contain multiple Ethernet ports. The
interface-list argument is in the format of interface-list = { interface-type interface-number [ to
interface-type interface-number ] } & <1-10>, where interface-type represents the port type,
interface-number represents the port number, and & <1-10> means that you can provide up to 10
ports or port ranges for this argument. The start port number must be smaller than the end number
and the two ports must be the same type.
Usage guidelines
In system view, if no interface is specified, the command applies to all ports.
Examples
# Configure port GigabitEthernet 3/0/1 to implement port-based access control.
<Sysname> system-view
[Sysname] dot1x port-method portbased interface gigabitethernet 3/0/1
Or
<Sysname> system-view
[Sysname] interface gigabitethernet 3/0/1
[Sysname-GigabitEthernet3/0/1] dot1x port-method portbased
# Configure ports GigabitEthernet 3/0/2 through GigabitEthernet 3/0/5 to implement port-based
access control.
<Sysname> system-view
[Sysname] dot1x port-method portbased interface gigabitethernet 3/0/2 to gigabitethernet
3/0/5
Related commands
display dot1x
122
Advertisement
Table of Contents
