802.1x
The following section is used to capture wired user authentication information. This information is used by Cisco Spaces apps such as Right Now, where dot1x has been configured.
How to enable 802.1x port-based authentication on the switch?
There are several ways to configure 802.1x port-based authentication on a switch. This task shows you one of the way to enable 802.1x.
Procedure
Step 1 |
aaa new-model This command enables AAA. |
Step 2 |
aaa authentication dot1x default group radius This command creates a series of authentication methods to determine user privilege. If the user has the necessary previlige, the device can communicate with the AAA server. |
Step 3 |
dot1x system-auth-control Example:
|
How to enable 802.1x port-based authentication on the switch interface?
This task shows you how to enable 802.1x port-based authentication on the switch interface.
Procedure
Step 1 |
authentication port-control auto This command enables port authentication. |
Step 2 |
dot1x pae authenticator This command enables 802.1x port authentication. Example:
|
How to configure the switch for RADIUS-server communication?
This task shows you how to configure a switch for RADIUS-server communication.
Procedure
Step 1 |
radius server RADIUS This command configures the RADIUS server. |
Step 2 |
address ipv4 radius-ip auth-port 1645 acct-port 1646 This command configures the server IP address and port. |
Step 3 |
keyvar Example:
|
How to view the current 802.1x status for a switch interface?
The following command displays the details of a switch interface.
Procedure
show dot1x interface interface-id
|