User Manual

ManualsBrandsYamaha ManualsProfessional Audio DevicesL2 Switch

141

142

143

144

145

146

147

148

149

150

Operation mode Description

multi-supplicant

This mode allows communication with multiple

supplicants for each port. Communication is

allowed or denied on a per-supplicant basis.

[Initial value]

auth host-mode single-host

[Input mode]

interface mode

[Description]

Changes the port authentication operation mode for the applicable interface.

If this command is executed with the "no" syntax, the setting returns to the default.

[Note]

This command can be specified only for both LAN/SFP port and logical interface.

Changing the settings for this command will make the authentication state return to the default.

When using dynamic VLAN in multi-supplicant mode, the VLAN can be specified for individual supplicants.

When using dynamic VLAN in multi-host, the VLAN ID applied by the first supplicant will be applied to supplicants from the

second onwards.

To use this command, you must enable the port authentication function for the applicable interface. (dot1x port-control

command, auth-mac enable command, auth-web enable command)

[Example]

Change the LAN port #1 to multi supplicant mode.

SWR2311P(config)#interface port1.1

SWR2311P(config-if)#auth host-mode multi-supplicant

5.3.11 Set re-authentication

[Syntax]

auth reauthentication

no auth reauthentication

[Initial value]

no auth reauthentication

[Input mode]

interface mode

[Description]

Enables reauthentication of supplicants for the applicable interface.

If this is executed with the "no" syntax, the re-authentication is disabled.

When this setting is enabled, this periodically reauthenticates supplicants that have been successfully authenticated.

The reauthentication interval can be changed using the auth timeout reauth-period command.

[Note]

This command can be specified only for both LAN/SFP port and logical interface.

During IEEE 802.1X authentication, an EAPOL packet is transmitted to the supplicant at the timing for reauthentication to once

again retrieve the user information, and an authentication request is sent to the RADIUS server.

During MAC authentication, the supplicant's MAC address is regarded as a user name and password at the timing for

reauthentication, and a request is sent to the RADIUS server for authentication.

During Web authentication, the supplicant's authentication state is shifted to unauthorized at the timing of reauthentication.

To use this command, you must enable the port authentication function for the applicable interface. (dot1x port-control

command, auth-mac enable command, auth-web enable command)

[Example]

Enable re-authenticatio of LAN port #1.

SWR2311P(config)#interface port1.1

SWR2311P(config-if)#auth reauthentication

148 | Command Reference | Interface control