Configuring An Authentication Method List For 802.1X; Setting Radius Parameters - Dell PowerConnect B-RX Configuration Manual
Bigiron rx series supporting multi-service ironware v02.7.03
Hide thumbs
Also See for PowerConnect B-RX:
- Configuration manual (1458 pages) ,
- Getting started manual (32 pages) ,
- Installation manual (240 pages)
Table of Contents
Advertisement
31
Configuring multi-device port authentication
You can enable the feature on an interface at the interface CONFIG level.
Configuring an authentication method list for 802.1x
To use 802.1x port security, you must specify an authentication method to be used to authenticate
Clients. Brocade supports RADIUS authentication with 802.1x port security. To use RADIUS
authentication with 802.1x port security, you create an authentication method list for 802.1x and
specify RADIUS as an authentication method, then configure communication between the BigIron
RX and RADIUS server.
For example.
BigIron RX(config)# aaa authentication dot1x default radius
Syntax: [no] aaa authentication dot1x default <method-list>
For the <method-list>, enter at least one of the following authentication methods.
radius – Use the list of all RADIUS servers that support 802.1x for authentication.
none – Use no authentication. The Client is automatically authenticated without the device using
information supplied by the Client.
NOTE
If you specify both radius and none, make sure radius comes before none in the method list.
Setting RADIUS parameters
To use a RADIUS server to authenticate access to a BigIron RX, you must identify the server to the
device. For example.
BigIron RX(config)# radius-server host 209.157.22.99 auth-port 1812 acct-port
1813 default key mirabeau dot1x
Syntax: radius-server host <ip-addr> | <server-name> [auth-port <number> acct-port <number>
The host <ip-addr> | <server-name> parameter is either an IP address or an ASCII text string.
The auth-port <number> parameter specifies what port to use for RADIUS authentication.
The acct-port <number> parameter specifies what port to use for RADIUS accounting.
The dot1x parameter indicates that this RADIUS server supports the 802.1x standard. A RADIUS
server that supports the 802.1x standard can also be used to authenticate non-802.1x
authentication requests.
NOTE
To implement 802.1x port security, at least one of the RADIUS servers identified to the BigIron RX
must support the 802.1x standard.
Supported RADIUS attributes
Many IEEE 802.1x Authenticators will function as RADIUS clients. Some of the RADIUS attributes
may be received as part of IEEE 802.1x authentication. The BigIron RX supports the following
RADIUS attributes for IEEE 802.1x authentication:
•
920
[authentication-only | accounting-only | default [key 0 | 1 <string> [dot1x]]] ]
Username (1) – RFC 2865
BigIron RX Series Configuration Guide
53-1001986-01
Advertisement
Chapters
Table of Contents
