Configuring Mac Authentication Bypass - Cisco Catalyst 2975 Software Configuration Manual

Chapter 10 Configuring IEEE 802.1x Port-Based Authentication

Configuring MAC Authentication Bypass

Beginning in privileged EXEC mode, follow these steps to enable MAC authentication bypass. This
procedure is optional.
Command
Step 1 configure terminal
Step 2 interface interface-id
Step 3 authentication port-control auto
or
dot1x port-control auto
Step 4
dot1x mac-auth-bypass [eap | timeout
activity {value}]
Step 5 end
Step 6
show authentication interface-id
or
show dot1x interface interface-id
Step 7 copy running-config startup-config
To disable MAC authentication bypass, use the no dot1x mac-auth-bypass interface configuration
command.
This example shows how to enable MAC authentication bypass:
Switch(config-if)# dot1x mac-auth-bypass
OL-19720-02
Purpose
Enter global configuration mode.
Specify the port to be configured, and enter interface configuration mode.
For the supported port types, see the
Configuration Guidelines" section on page
Enable 802.1x authentication on the port.
Enable MAC authentication bypass.
(Optional) Use the eap keyword to configure the switch to use EAP for
authorization.
(Optional) Use the timeout activity keywords to configured the number
of seconds that a connected host can be inactive before it is placed in an
unauthorized state. The range is 1 to 65535.
You must enable port security before configuring a timeout value. For
more information, see the
page 23-9.
Return to privileged EXEC mode.
Verify your entries.
(Optional) Save your entries in the configuration file.
Catalyst 2975 Switch Software Configuration Guide
Configuring 802.1x Authentication
"802.1x Authentication
10-35.
"Configuring Port Security" section on
10-57