Manualshelf

CLI Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch N1500 Series
931932933934935936937938939940
Security Commands 938
Network Authorization Methods
---------------------- -------
Dot1x none
aaa authorization network default radius
Use the aaa authorization network default radius command in Global
Configuration mode to enable the switch to authorize VLAN assignment by
the RADIUS server.
Syntax
aaa authorization network default radius
no aaa authorization network default radius
Default Configuration
By default, the switch does not accept VLAN assignments by the RADIUS
server.
Command Mode
Global Configuration mode
User Guidelines
The RADIUS server can place a port in a particular VLAN based on the result
of the authentication. VLAN assignment must be configured on the external
RADIUS server using the RADIUS TUNNEL-TYPE attribute and others. See
RADIUS Commands
and
Security Commands
for further information.
If the port is configured to use authentication host-mode multi-auth or
multi-domain-multi-host and the port is configured as a general mode port,
each authenticating data device is placed into the assigned VLAN. Device
packets are identified by their source MAC address.
If the port is configured to use 802.1X port control auto mode and the port is
configured as an access mode port, the PVID of the port is updated for the
first data device authentication. Only the first assignment of the PVID takes
effect. All subsequent valid authentications will be placed into the first PVID
assigned, regardless of the received VLAN ID.