3com 5500 User Manual

C

HAPTER

 17: 802.1

X

 C

ONFIGURATION

 G

UIDE

seconds, it retransmits the packet for up to 5 times. The switch sends real-time 
accounting packets at an interval of 15 minutes. A username is sent to the 
RADIUS server with the domain name truncated.

■

The username and password for local 802.1x authentication are localuser and 
localpass (in plain text) respectively. The idle disconnecting function is enabled.

# Enable 802.1x globally.

<3Com> system-view

[3Com] dot1x 

# Enable 802.1x on Ethernet 1/0/1.

[3Com] dot1x interface Ethernet 1/0/1 

# Set the access control method to MAC-based. This operation can be omitted 
because MAC-based is the default.

[3Com] dot1x port-method macbased interface Ethernet 1/0/1 

# Create a RADIUS scheme named radius1 and enter the RADIUS scheme view.

[3Com] radius scheme radius1 

# Assign IP addresses to the primary authentication and accounting RADIUS 
servers.

[3Com-radius-radius1] primary authentication 10.11.1.1

[3Com-radius-radius1] primary accounting 10.11.1.2 

# Assign IP addresses to the secondary authentication and accounting RADIUS 
servers.

[3Com-radius-radius1] secondary authentication 10.11.1.2

[3Com-radius-radius1] secondary accounting 10.11.1.1 

# Set the shared key for message exchange between the switch and the RADIUS 
authentication server.

[3Com -radius-radius1] key authentication name 

# Set the shared key for message exchange between the switch and the RADIUS 
accounting server.

[3Com-radius-radius1] key accounting money 

Switch 5500

Release V03.02.04 

All versions 

Switch 5500G

Release V03.02.04 

All versions 

Switch 4500

Release V03.03.00 

All versions

Switch 4210

 Release V03.01.00 

All versions