Authorization VLAN ·································································································································· 72
Guest VLAN ············································································································································· 74
Auth-Fail VLAN ········································································································································ 75
Critical VLAN ············································································································································ 76
ACL assignment ······································································································································· 78
User profile assignment ··························································································································· 79
EAD assistant ··········································································································································· 79
Configuration prerequisites ······························································································································ 79
802.1X configuration task list ··························································································································· 80
Enabling 802.1X ··············································································································································· 80
Configuration guidelines ··························································································································· 83
Configuration procedure ··························································································································· 84
Configuration guidelines ··························································································································· 84
Configuration procedure ··························································································································· 84
Setting the quiet timer ······································································································································ 85
Configuration guidelines ··························································································································· 86
Configuration prerequisites ······················································································································ 87
Configuration procedure ··························································································································· 87
Configuration guidelines ··························································································································· 88
Configuration prerequisites ······················································································································ 89
Configuration procedure ··························································································································· 89
Configuration guidelines ··························································································································· 89
Configuration prerequisites ······················································································································ 89
Configuration procedure ··························································································································· 90
Configuration prerequisites ······················································································································ 90
Configuration procedure ··························································································································· 91
Troubleshooting 802.1X ································································································································· 102
Overview ························································································································································ 103
User account policies ····························································································································· 103
Authentication methods ·························································································································· 103
VLAN assignment ·································································································································· 103
ACL assignment ····································································································································· 105
User profile assignment ························································································································· 106
Periodic MAC reauthentication ··············································································································· 106
ii