Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4820T
171172173174175176177178179180
dot1x guest-vlan
Congure a guest VLAN for limited access users or for devices that are not 802.1X capable.
Syntax
dot1x guest-vlan vlan-id
To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command.
Parameters
vlan-id Enter the VLAN Identier. The range is from 1 to 4094.
Defaults Not congured.
Command Modes CONFIGURATION (conf-if-interface-slot/port)
Command History
This guide is platform-specic. For command information about other platforms, refer to the relevant Dell
Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version Description
9.7(0.0) Introduced on the S6000–ON.
9.0.2.0 Introduced on the S6000.
9.0.0.0 Introduced on the Z9000.
8.3.19.0 Introduced on the S4820T.
8.3.12.0 Introduced on the S4810.
8.3.11.1 Introduced on the Z9000.
7.6.1.0 Introduced on the C-Series, E-Series, and S-Series.
Usage Information
1X authentication is enabled when an interface is connected to the switch. If the host fails to respond within
a designated amount of time, the authenticator places the port in the guest VLAN.
If a device does not respond within 30 seconds, it is assumed that the device is not 802.1X capable.
Therefore, a guest VLAN is allocated to the interface and authentication, for the device, occurs at the next
reauthentication interval (dot1x reauthentication).
If the host fails authentication for the designated number of times, the authenticator places the port in
authentication failed VLAN (dot1x auth-fail-vlan).
NOTE: You can create the Layer 3 portion of a guest VLAN and authentication fail VLANs
regardless if the VLAN is assigned to an interface or not. After an interface is assigned a guest
VLAN (which has an IP address), routing through the guest VLAN is the same as any other trac.
However, the interface may join/leave a VLAN dynamically.
Related Commands
dot1x auth-fail-vlanCongure an authentication failure VLAN.
dot1x reauthentication — Enable periodic re-authentication of the client.
dot1x reauth-max
Congure the maximum number of times to re-authenticate a port before it becomes unauthorized
802.1X
177