Intrusion trap
Address-learned trap
Mac-auth-failure trap
Mac-auth-logon trap
Mac-auth-logoff trap
Open authentication
OUI value list
Index :
Index :
Index :
Index :
Index :
GigabitEthernet1/0/1 is link-up
Port mode
NeedToKnow mode
Intrusion protection mode
Security MAC address attribute
Learning mode
Aging type
Max secure MAC addresses
Current secure MAC addresses
Authorization
NAS-ID profile
Free VLANs
Open authentication
# Display information about the online 802.1X user to verify 802.1X configuration.
[Device] display dot1x
# Verify that the port also allows one user whose MAC address has an OUI among the specified
OUIs to pass authentication.
[Device] display mac-address interface gigabitethernet 1/0/1
MAC Address
1234-0300-0011
macAddressElseUserLoginSecure configuration example
Network requirements
As shown in
authenticates the client by a RADIUS server in ISP domain sun. If the authentication succeeds, the
client is authorized to access the Internet.
Configure GigabitEthernet 1/0/1 of the device to meet the following requirements:
•
Allow more than one MAC authenticated user to log on.
•
For 802.1X users, perform MAC authentication first and then, if MAC authentication fails,
802.1X authentication. Allow only one 802.1X user to log on.
•
Use the MAC address of each user as the username and password for authentication. A MAC
address is in the hexadecimal notation with hyphens, and letters are in upper case.
•
Set the total number of MAC authenticated users and 802.1X authenticated users to 64.
: Disabled
: Disabled
: Disabled
: Disabled
: Disabled
: Disabled
:
1
Value : 123401
2
Value : 123402
3
Value : 123403
4
Value : 123404
5
Value : 123405
VLAN ID
State
1
Learned
Figure
79, a client is connected to the device through GigabitEthernet 1/0/1. The device
: userLoginWithOUI
: Disabled
: NoAction
: Sticky
: Periodical
: Not configured
: 1
:Permitted
: Not configured
: Not configured
: Disabled
Port/NickName
GE1/0/1
259
Aging
Y