Administrator Guide
Guest VLAN id: 400
Auth-Fail VLAN: Enable
Auth-Fail VLAN id: 400
Auth-Fail Max-Attempts: 3
Critical VLAN: Enable
Critical VLAN id: 400
Mac-Auth-Bypass: Disable
Mac-Auth-Bypass Only: Disable
Tx Period: 30 seconds
Quiet Period: 60 seconds
ReAuth Max: 2
Supplicant Timeout: 30 seconds
Server Timeout: 30 seconds
Re-Auth Interval: 60 seconds
Max-EAP-Req: 2
Host Mode: SINGLE_HOST
Auth PAE State: Authenticated
Backend State: Idle
dot1x guest-vlan
Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.
C9000 Series
Syntax
dot1x guest-vlan vlan-id
To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command.
Parameters
vlan-id Enter the VLAN Identifier. The range is from 1 to 4094.
Defaults Not configured.
Command Modes
CONFIGURATION (conf-if-interface-slot/port)
CONFIGURATION TERMINAL BATCH
Command
History
This guide is platform-specific. For command information about other platforms, refer to the relevant Dell
Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version Description
9.10(0.0) Introduced the Configuration Terminal Batch mode on C9010.
9.9(0.0) Introduced on the C9010.
9.2(1.0) Introduced on the Z9500.
8.3.19.0 Introduced on the S4820T.
8.3.12.0 Introduced on the S4810.
8.3.11.1 Introduced on the Z9000.
7.6.1.0 Introduced on the C-Series, E-Series, and S-Series.
Usage
Information
802.1X authentication is enabled when an interface is connected to the switch. If the host fails to respond
within a designated amount of time, the authenticator places the port in the guest VLAN.
If a device does not respond within 30 seconds, it is assumed that the device is not 802.1X capable.
Therefore, a guest VLAN is allocated to the interface and authentication, for the device, occurs at the
next reauthentication interval (dot1x reauthentication).
802.1X 201