Manualshelf

mac

ManualsBrandsip ManualsNetworkingipv6
441442443444445446447448449450
Commands for 802.1x
448
access all the resources. When MAC based authentication is applied, multiple host
which are connected to one port can access all the network resources after
authentication. When either of the above two kinds of access control is applied,
un-authenticated host cannot access any resources in the network.
When user based access control is applied, un-authenticated users can only access
limited resources of the network. The user based access control falls into two kinds the
standard access control and the advanced access control. The standard user based
access control does not limit the access to the limited resources when the host is not
authenticated yet. While the user based advanced access control can control the access
to the limited resources before authentication is done.
Notes: For standard control method based on user, the 802.1x free resource must be
configured first, and it needs to be used with dot1x privateclient enable.
Example: To configure the access control method based on port for Etherent1/4.
Switch(Config-If-Ethernet1/4)#dot1x port-method portbased
38.20 dot1x privateclient enable
Command: dot1x privateclient enable
no dot1x privateclient enable
Function: To configure the switch to force the authentication client to use private 802.1x
authentication protocol. The no prefix will disable the command and allow the
authentication client to use the standard 802.1x authentication protocol.
Command Mode: Global Mode.
Default: Private 802.1x authentication packet format is disabled by default.
Usage Guide: To implement integrated solution, the switch must be enabled to use
private 802.1x protocol, or many applications will not be able to function. For detailed
information, please refer to DCBI integrated solution. If the switch forces the
authentication client to use private 802.1x protocol, the standard client will not be able to
work.
Example: To force the authentication client to use private 802.1x authentication protocol.
Switch(config)#dot1x privateclient enable
38.21 dot1x privateclient protect enable
Command: dot1x privateclient protect enable
no dot1x privateclient protect enable
Function: Enable the privateclient protect function of the switch, the no command