dot1x
Syntax
Hierarchy Level
Release Information
Description
Default
Required Privilege
Level
Related
Documentation
Copyright © 2010, Juniper Networks, Inc.
dot1x {
authenticator {
authentication-profile-name access-profile-name;
interface (all | [ interface-names ]) {
disable;
guest-vlan (vlan-id | vlan-name);
mac-radius <restrict>;
maximum-requests number;
no-reauthentication;
quiet-period seconds;
reauthentication {
interval seconds;
}
retries number;
server-fail (deny | permit | use-cache | vlan-id | vlan-name);
server-reject-vlan (vlan-id | vlan-name);
server-timeout seconds;
supplicant (single | single-secure | multiple);
supplicant-timeout seconds;
transmit-period seconds;
}
static mac-address {
interface interface-names;
vlan-assignment (vlan-id |vlan-name);
}
}
}
[edit protocols]
Statement introduced in Junos OS Release 9.0 for EX Series switches.
Configure 802.1X authentication for Port-Based Network Access Control. 802.1X
authentication is supported on interfaces that are members of private VLANs (PVLANs).
The remaining statements are explained separately.
802.1X is disabled.
routing—To view this statement in the configuration.
routing-control—To add this statement to the configuration.
show dot1x on page 2757
Example: Setting Up 802.1X for Single Supplicant or Multiple Supplicant Configurations
on an EX Series Switch on page 2568
Example: Setting Up 802.1X in Conference Rooms to Provide Internet Access to
Corporate Visitors on an EX Series Switch on page 2554
Chapter 85: Configuration Statements for Access Control
2673