Table of Contents
Advertisement
HP Switch(config)# show vlan 22
Status and Counters - VLAN Information - VLAN 22
VLAN ID : 22
Name : vlan 22
Status : Static
Voice : No
Jumbo : No
Port Information Mode
---------------- -------- ------------ ----------
1
2
4
.
.
.
Overriden Port VLAN configuration
Port Mode
---- ----------
2
No
Figure 13-20. The Active Configuration for VLAN 22 Temporarily Changes for the 802.1X Session
VLAN 33 becomes unavailable to port 2 for the duration of the session
■
(because there can be only one untagged VLAN on any port).
To view the temporary VLAN assignment as a change in the active configura-
tion, use the show vlan <vlan-id> command as shown in Figure 13-20 where
<vlan-id> is the (static or dynamic) VLAN used in the authenticated client
session.
Unknown VLAN Status
Tagged
Learn
802.1X
Learn
Tagged
Learn
However, as shown in Figure 13-20, because VLAN 33 is configured as
untagged on port 2 and because a port can be untagged on only one VLAN,
port 2 loses access to VLAN 33 for the duration of the 802.1X session on VLAN
22.
You can verify the temporary loss of access to VLAN 33 by entering the show
vlan 33 command as shown in Figure 13-21.
Configuring Port-Based and User-Based Access Control (802.1X)
How RADIUS/802.1X Authentication Affects VLAN Operation
Up
Up
Up
This entry shows that port 2 is temporarily untagged on
VLAN 22 for an 802.1X session. This is to accommodate
an 802.1X client's access, authenticated by a RADIUS
server, where the server included an instruction to put
the client's access on VLAN 22.
Note: With the current VLAN configuration (figure 13-20),
the only time port 2 appears in this show vlan 22 listing
is during an 802.1X session with an attached client.
Otherwise, port 2 is not listed.
13-73
Hide quick links:
Advertisement
Table of Contents
