Table of Contents
Advertisement
3.29.18 dot1x single-host-violation
The dot1x single-host-violation interface configuration command configures the action to be taken, when a station
whose MAC address is not the supplicant MAC address, attempts to access the interface. Use the no form of this
command to return to default.
Syntax
dot1x single-host-violation {forward | discard | discard-shutdown} [trap seconds]
no port dot1x single-host-violation
§
forward — Forward frames with source addresses not the supplicant address, but do not learn the address.
§
discard — Discard frames with source addresses not the supplicant address.
§
discard-shutdown — Discard frames with source addresses not the supplicant address. The port is also
shutdown.
§
trap seconds — Send SNMP traps, and specifies the minimum time between consecutive traps.(Range: 1-
)
1000000
Default Configuration
Discard frames with source addresses not the supplicant address. No traps.
Command Mode
Interface configuration (Ethernet) mode
User Guidelines
The command is relevant when Multiple hosts is disabled and the user has been successfully authenticated
Examples
The following example uses the forward action to forward frames with source addresses.
console config-if(Config-VLAN)# dot1x single-host-violation forward trap 100
3.29.19 show dot1x advanced
The show dot1x advanced privileged EXEC command displays 802.1X advanced features for the switch or for the
specified interface.
Syntax
show dot1x advanced [ethernet interface]
§
interface — Ethernet interface
Default Configuration
This command has no default configuration.
Command Mode
Privileged EXEC mode
User Guidelines
There are no user guidelines for this command.
Examples
The following example displays 802.1X advanced features for the switch.
Switch# show dot1x advanced
Guest VLAN: 3978
Unauthenticated VLANs: 91, 92
Use user attributes from Authentication Server: Enabled
User VLAN not created: Create
Interface Multiple
Hosts
1/1
Disabled
1/2
Enabled
173
Advertisement
Table of Contents
