Cisco 7604 Configuration Manual page 814
Ios software configuration guide
Hide thumbs
Also See for 7604:
- Configuration manual (742 pages) ,
- Installation manual (324 pages) ,
- User manual (98 pages)
Table of Contents
Advertisement
Configuring 802.1X Port-Based Authentication
Command
Step 1
Router(config)# aaa new-model
Router(config)# no aaa new-model
Step 2
Router(config)# aaa authentication dot1x
{default} method1 [ method2
Router(config)# no aaa authentication dot1x
{default | list_name }
Step 3
Router(config)# dot1x system-auth-control
Router(config)# no dot1x system-auth-control
Step 4
Router(config)# interface type
Step 5
Router(config-if)# dot1x port-control auto
Router(config-if)# no dot1x port-control auto
Step 6
Router(config)# end
Step 7
Router# show dot1x all
1.
type = ethernet, fastethernet, gigabitethernet, or tengigabitethernet
When you enable 802.1X port-based authentication, note the following information:
•
•
This example shows how to enable AAA and 802.1X on Fast Ethernet port 5/1:
Router# configure terminal
Router(config)# aaa new-model
Router(config)# aaa authentication dot1x default group radius
Router(config)# dot1x system-auth-control
Router(config)# interface fastethernet 5/1
Router(config-if)# dot1x port-control auto
Router(config-if)# end
This example shows how to verify the configuration:
Router# show dot1x all
Dot1x Info for interface FastEthernet5/1
----------------------------------------------------
Cisco 7600 Series Router Cisco IOS Software Configuration Guide, Release 12.2SX
46-8
...
]
1
slot/port
To create a default list that is used when a named list is not specified in the authentication
command, use the default keyword followed by the methods that are to be used in default situations.
The default method list is automatically applied to all interfaces.
Enter at least one of these keywords:
group radius—Use the list of all RADIUS servers for authentication.
–
none—Use no authentication. The client is automatically authenticated by the router without
–
using the information supplied by the client.
Chapter 46
Configuring IEEE 802.1X Port-Based Authentication
Purpose
Enables AAA.
Disables AAA.
Creates an 802.1X port-based authentication method list.
Clears the configured method list.
Globally enables 802.1X port-based authentication.
Globally disables 802.1X port-based authentication.
Enters interface configuration mode and specifies the
interface to be enabled for 802.1X port-based
authentication.
Enables 802.1X port-based authentication on the
interface.
Disables 802.1X port-based authentication on the
interface.
Returns to privileged EXEC mode.
Verifies your entries.
Check the Status column in the 802.1X Port Summary
section of the display. An enabled status means the
port-control value is set either to auto or to
force-unauthorized.
OL-4266-08
- Quick Links:
- Supported Hardware and Software
Hide quick links:
Advertisement
Chapters
Table of Contents
