Forcibly Authorizing Or Unauthorizing A Port - Dell Force10 Z9000 Configuration Manual
Ftos configuration guide for z9000 system
Hide thumbs
Also See for Force10 Z9000:
- Reference manual (1483 pages) ,
- Configuration manual (848 pages) ,
- Manual (56 pages)
Table of Contents
Advertisement
Figure 5-7. Configuring a Request Identity Re-transmissions
FTOS(conf-if-range-gi-2/1)#dot1x tx-period 90
FTOS(conf-if-range-gi-2/1)#dot1x max-eap-req 10
FTOS(conf-if-range-gi-2/1)#dot1x quiet-period 120
FTOS#show dot1x interface gigabitethernet 2/1
802.1x information on Gi 2/1:
-----------------------------
Dot1x Status:
Port Control:
Port Auth Status:
Re-Authentication:
Untagged VLAN id:
Tx Period:
Quiet Period:
ReAuth Max:
Supplicant Timeout:
Server Timeout:
Re-Auth Interval:
Max-EAP-Req:
Auth Type:
Auth PAE State:
Backend State:
Forcibly Authorizing or Unauthorizing a Port
IEEE 802.1X requires that a port can be manually placed into any of three states:
•
ForceAuthorized is an authorized state. A device connected to this port in this state is never subjected
to the authentication process, but is allowed to communicate on the network. Placing the port in this
state is same as disabling 802.1X on the port.
•
ForceUnauthorized an unauthorized state. A device connected to a port in this state is never subjected
to the authentication process and is not allowed to communicate on the network. Placing the port in
this state is the same as shutting down the port. Any attempt by the supplicant to initiate authentication
is ignored.
•
Auto is an unauthorized state by default. A device connected to this port is this state is subjected to the
authentication process. If the process is successful, the port is authorized and the connected device can
communicate on the network. All ports are placed in the auto state by default.
To place a port in one of these three states:
Step
Task
1
Place a port in the ForceAuthorized,
ForceUnauthorized, or Auto state.
Figure 5-8
shows configuration information for a port that has been force-authorized.
Enable
AUTO
UNAUTHORIZED
Disable
None
90 seconds
120 seconds
2
30 seconds
30 seconds
3600 seconds
10
SINGLE_HOST
Initialize
Initialize
Command Syntax
dot1x port-control {force-authorized |
force-unauthorized | auto}
Default: auto
New Re-transmit Interval
New Quiet Period
New Maximum Re-transmissions
Command Mode
INTERFACE
802.1X | 81
Advertisement
Chapters
Table of Contents
Troubleshooting
