Dot1X Guest-Vlan Vlan-Id - Siemens SCALANCE XC-200 Configuration Manual
Simatic net command line interface industrial ethernet switches
Hide thumbs
Also See for SCALANCE XC-200:
- Configuration manual (270 pages) ,
- Operating instructions manual (84 pages) ,
- Set up and configuration (64 pages)
Table of Contents
Advertisement
Security and authentication
11.5 Port Based Network Access Control
Requirement
You are in the Interface configuration mode.
The command prompt is as follows:
cli(config-if-$$$)#
Syntax
Call the command without parameters:
no dot1x guest-vlan
Result
The guest VLAN function is disabled for a port.
Further notes
You enable the function with the dot1x guest-vlan command.
You display this setting and other information with the show dot1x command.
11.5.3.3
dot1x guest-vlan vlan-id
Description
With this command, you configure a guest VLAN for a port.
The port can only be assigned to the VLAN, if the VLAN has been created on the device.
Otherwise Authentication is rejected.
If during authentication a port is assigned to a VLAN dynamically using this function,
assignment using the VLAN-ID or the VLAN name is possible. Configure the following values
on the RADIUS server:
● Tunnel-Type = VLAN
● Tunnel-Medium-Type = IEEE-802
● Tunnel-Private-Group-Id = VLAN-ID or VLAN-Name
The IE switch distinguishes as follows:
● VLAN ID: The RADIUS server transfers a numeric string for the parameter "Tunnel-Private-
Group-Id".
● VLAN-Name: The RADIUS server transfers an alphanumeric string for the parameter
"Tunnel-Private-Group-Id".
Requirement
You are in the Interface configuration mode.
The command prompt is as follows:
530
SCALANCE XB-200/XC-200/XF-200BA/XP-200/XR-300WG Command Line Interface
Configuration Manual, 07/2017, C79000-G8976-C361-06
- Quick Links:
- System Functions Hardware Equipment
Hide quick links:
Advertisement
Table of Contents
