Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsC9010 Modular Chassis Switch

100

Example of Configuring Maximum Authentication Attempts

Dell(conf-if-Te-2/1)#dot1x auth-fail-vlan 100 max-attempts 5

Dell(conf-if-Te-2/1)#show config

interface TenGigabitEthernet 2/1

switchport

dot1x authentication

dot1x guest-vlan 200

dot1x auth-fail-vlan 100 max-attempts 5

no shutdown

Dell(conf-if-Te-2/1)#

Dell#show int TenGigabitEthernet 2/1

TenGigabitEthernet 2/1 is up, line protocol is down(802.1x authorization failed)

Hardware is DellEth, address is 34:17:eb:00:aa:12

Current address is 34:17:eb:00:aa:12

Pluggable media not present

Interface index is 804258823

Internet address is not set

Mode of IPv4 Address Assignment : NONE

DHCP Client-ID :3417eb00aa12

MTU 1554 bytes, IP MTU 1500 bytes

LineSpeed 1000 Mbit, Mode auto

Auto-mdix enabled, ARP type: ARPA, ARP Timeout 04:00:00

Last clearing of "show interface" counters 20:06:07

Queueing strategy: fifo

Input Statistics:

10760802379 packets, 688691353132 bytes

10760802177 64-byte pkts, 203 over 64-byte pkts, 0 over 127-byte pkts

0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts

203 Multicasts, 0 Broadcasts, 10760802177 Unicasts

0 runts, 0 giants, 0 throttles

0 CRC, 0 overrun, 0 discarded

Output Statistics:

2285 packets, 146240 bytes, 0 underruns

2285 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts

0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts

1983 Multicasts, 0 Broadcasts, 302 Unicasts

0 throttles, 0 discarded, 0 collisions, 0 wreddrops

Rate info (interval 299 seconds):

Input 76.00 Mbits/sec, 149280 packets/sec, 10.00% of line-rate

Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate

Time since last interface status change: 03:21:48

View your configuration using the show config command from INTERFACE mode, as shown in the example in Configuring a

Guest VLAN or using the show dot1x interface command from EXEC Privilege mode.

Example of Viewing Configured Authentication

802.1x information on Te 2/1:

-----------------------------

Dot1x Status: Enable

Port Control: FORCE_AUTHORIZED

Port Auth Status: UNAUTHORIZED

Re-Authentication: Disable

Untagged VLAN id: None

Guest VLAN: Disabled

Guest VLAN id: 200

Auth-Fail VLAN: Enabled

Auth-Fail VLAN id: 100

Auth-Fail Max-Attempts: 5

Tx Period: 90 seconds

Quiet Period: 120 seconds

ReAuth Max: 10

Supplicant Timeout: 15 seconds

Server Timeout: 15 seconds

Re-Auth Interval: 7200 seconds

Max-EAP-Req: 10

Auth Type: SINGLE_HOST

802.1X