Manualshelf

Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
161162163164165166167168169170
(DellSwitch)(config) #'''user-role EMPLOYEE_1'''
(DellSwitch)(config-role) #'''access-list stateless STATELESS'''
You can also apply MAC and Ethertype ACLs to a user role. However, these ACLs apply only to a user's non-IP traffic.
Verifiying Stateless ACL Configuration
To verify a stateless ACL configuration:
(DellSwitch) #'''show ip access-list STATELESS'''
Verifying Stateless ACL Traffic Hits
To verify stateless traffic hits:
(DellSwitch) #'''show acl hits'''
Verifying Stateless ACL Operation
To verify stateless ACL operation:
(DellSwitch) # '''show acl acl-table'''
CLI-Based Configuration for Mobility Access Switch 802.1X
Authentication
This section contains the following information:
l Termination Options
l Configuring a Server Rule Using the CLI
l Setting Variables for LDAP Servers
l Configuring Certificates with Authentication Termination
Termination Options
The Mobility Access Switch supports 802.1x authentication, including termination. For example, the list of
termination options for the profile name FacultyAuth is shown below.
(host) (802.1X Authentication Profile "FacultyAuth") # termination ?
eap-type Configure the EAP method.Default method is EAP-PEAP
enable Enable Dot1x Termination.Default is disabled
enable-token-caching Enable Token Caching.Default is disabled
inner-eap-type Configure the inner EAP method.Default method is
EAP-MSCHAPV2
token-caching-period Configure the Token Caching Period
802.1x Authentication Profile Configuration Examples
The following example configures various options for the 802.1x Authentication profile FacultyAuth.
(host) (802.1X Authentication Profile "FacultyAuth") #termination enable
(host) (802.1X Authentication Profile "FacultyAuth") #termination eap-type eap-peap
(host) (802.1X Authentication Profile "FacultyAuth") #max-authentication-failures 2
(host) (802.1X Authentication Profile "FacultyAuth") #timer reauth-period 3600
(host) (802.1X Authentication Profile "FacultyAuth") #framed-mtu 1500
Dell Networking W-ClearPass Deployment Guide Mobility Access Switch Configuration for 802.1X Authentication | 169