EdgeSwitch CLI Command Reference
Port-Based Network Access Control Commands
This section describes the commands you use to configure port-based network access control (IEEE 802 .1X) .
Port-based network access control allows you to permit access to network services only to and devices that are
authorized and authenticated .
aaa authentication dot1x default
Use this command to configure the authentication method for port-based access to the switch . The additional
methods of authentication are used only if the previous method returns an error, not if there is an authentication
failure . The possible methods are as follows:
ias
•
Uses the internal authentication server users database for authentication . This method can be used in
conjunction with any one of the existing methods like local, radius, etc .
local
•
Uses the local username database for authentication .
none
•
Uses no authentication .
radius
•
Uses the list of all RADIUS servers for authentication .
aaa authentication dot1x default {[ias]|[method1 [method2 [method3]]]}
Format
Mode
Global Config
Example: The following is an example of the command .
(UBNT EdgeSwitch) #
(UBNT EdgeSwitch) #configure
(UBNT EdgeSwitch) (Config)#aaa authentication dot1x default ias none
(UBNT EdgeSwitch) (Config)#aaa authentication dot1x default ias local radius none
clear dot1x statistics
This command resets the 802 .1X statistics for the specified port or for all ports .
clear dot1x statistics {slot/port | all}
Format
Mode
Privileged EXEC
clear dot1x authentication-history
This command clears the authentication history table captured during successful and unsuccessful
authentication on all interface or the specified interface .
clear dot1x authentication-history [slot/port]
Format
Mode
Privileged EXEC
clear radius statistics
This command is used to clear all RADIUS statistics .
clear radius statistics
Format
Mode
Privileged EXEC
dot1x eapolflood
Use this command to enable EAPOL flood support on the switch .
Default
disabled
dot1x eapolflood
Format
Mode
Global Config
Ubiquiti Networks, Inc.
Switching Commands
237