1. Manuals
  2. Brands
  3. HP Manuals
  4. Switch
  5. ProCurve Switch 2900yl-24G
  6. Access security manual

Enable 802.1X Authentication On Selected Ports; Enable The Selected Ports As Authenticators And Enable The (Default) Port-Based Authentication; Specify Client-Based Or Return To Port-Based 802.1X Authentication - HP ProCurve Switch 2900yl-24G Access Security Manual

Hide thumbs
Table of Contents

Advertisement

Configuring Port-Based and Client-Based Access Control (802.1X)
Configuring Switch Ports as 802.1X Authenticators
N o t e
9-18

1. Enable 802.1X Authentication on Selected Ports

This task configures the individual ports you want to operate as 802.1X
authenticators for point-to-point links to 802.1X-aware clients or switches,
and consists of two steps:
A. Enable the selected ports as authenticators.
B. Specify either client-based or port-based 802.1X authentication.
(Actual 802.1X operation does not commence until you perform step 5 on page
9-24 to activate 802.1X authentication on the switch.)
If you enable 802.1X authentication on a port, the switch automatically dis-
ables LACP on that port. However, if the port is already operating in an LACP
trunk, you must remove the port from the trunk before you can configure it
for 802.1X authentication.
A. Enable the Selected Ports as Authenticators and Enable
the (Default) Port-Based Authentication
Syntax:
[ no ] aaa port-access authenticator < port-list >
Enables specified ports to operate as 802.1X authenticators
and enables port-based authentication. (To enable client-
based authentication, execute this command first, and then
execute the client-limit < port-list > version of this command
described in the next section.) The no form of the command
removes 802.1X authentication from < port-list >. To activate
configured 802.1X operation, you must enable 802.1X
authentication. Refer to "5. Enable 802.1X Authentication
on the switch" on page 9-16.
B. Specify Client-Based or Return to Port-Based 802.1X
Authentication
Client-Based 802.1X Authentication.
Syntax:
aaa port-access authenticator client-limit < port-list > < 1 - 8 >
Used after executing aaa port-access authenticator < port-list >
(above) to convert authentication from port-based to client-
based. Specifies client-based 802.1X authentication and the
maximum number of 802.1X-authenticated client sessions
allowed on each of the ports in < port-list >. If a port currently
has no authenticated client sessions, the next authenticated
client session the port accepts determines the untagged
VLAN membership to which the port is assigned during the

Advertisement

Table of Contents
loading

Related Manuals for HP ProCurve Switch 2900yl-24G

Related Content for HP ProCurve Switch 2900yl-24G

This manual is also suitable for:

Procurve switch 2900yl-48gJ9049aJ9050a

Table of Contents