802.1X Network Access Control Examples - Dell PowerConnect M6348 Configuration Manual

Configuration guide

Hide thumbs Also See for PowerConnect M6348:

Cli reference manual (1152 pages)

Getting started manual (208 pages)

User configuration manual (1294 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

page of 158

/ 158
Contents
Table of Contents
Bookmarks

Table of Contents

Completion of an authentication exchange requires all three roles. The PowerConnect

M6220/M6348/M8024 switches support the authenticator role only, in which the PAE is responsible for

communicating with the supplicant. The authenticator PAE is also responsible for submitting

information received from the supplicant to the authentication server in order for the credentials to be

checked, which determines the authorization state of the port. Depending on the outcome of the

authentication process, the authenticator PAE then controls the authorized/unauthorized state of the

controlled Port.

Authentication is accomplished via an external authentication server:

•

Remote Authentication Dial-In User Service (RADIUS)

•

Terminal Access Controller Access Control System (TACACS+)

802.1x Network Access Control Examples

This section contains examples of the CLI commands used to configure 802.1X.

Example #1: Configure RADIUS Server for Authentication

This example configures a single RADIUS server used for authentication at 10.10.10.10. The shared

secret is configured to be

uses RADIUS as the authentication method. This authentication list is associated with the 802.1x

default login. 802.1x port based access control is enabled for the system, and interface 1/g1 is configured

to be in force-authorized mode because this is where the RADIUS server and protected network

resources are located.

Figure 5-1. Switch with 802.1x Network Access Control

If a user, or supplicant, attempts to communicate via the switch on any interface except interface 1/g1,

the system challenges the supplicant for login credentials. The system encrypts the provided information

and transmits it to the RADIUS server. If the RADIUS server grants access, the system sets the 802.1x

port state of the interface to authorized and the supplicant is able to access network resources.

console(config)#radius-server host 10.10.10.10

console(Config-radius)#exit

console(config)#radius-server key secret

console(config)#exit

console#show radius-servers

Device Security

secret

. The process creates a new authentication list, called radiusList, which

Table of Contents

This manual is also suitable for:

Poweredge m520 Poweredge m820 Powerconnect m6220 Powerconnect m8024

802.1X Network Access Control Examples - Dell PowerConnect M6348 Configuration Manual

802.1x Network Access Control Examples

Related Manuals for Dell PowerConnect M6348

Related Content for Dell PowerConnect M6348

This manual is also suitable for:

Table of Contents