Alcatel-Lucent ls 6248 User Guide
802.1x Commands
263
4
802.1x Commands
.
Table 4-5. 802.1x Commands
Command
Function
Mode
Page
Specifies one or more authentication, authorization, and
accounting (AAA) methods for use on interfaces running IEEE
802.1X. To return to the default configuration, use the no form of
this command
GC
Enables 802.1x globally. To return to the default configuration, use
the no form of this command
GC
Auto - Enables 802.1X authentication on the interface and causes
the port to transition to the authorized or unauthorized state based
on the 802.1X authentication exchange between the port and the
client.
Force-authorized - Disables 802.1X authentication on the
Force-authorized - Disables 802.1X authentication on the
interface and causes the port to transition to the authorized state
without any authentication exchange required. The port resends
and receives normal traffic without 802.1X-based authentication
of the client.
Force-unauthorized -Denies all access through this interface by
Force-unauthorized -Denies all access through this interface by
forcing the port to transition to the unauthorized state and ignoring
all attempts by the client to authenticate. The device cannot
provide authentication services to the client through the interface.
ICE
Enables periodic re-authentication of the client. To return to the
default configuration, use the no form of this command.
ICE
Sets the number of seconds between re-authentication attempts.
To return to the default configuration, use the no form of this
command.
ICE
Manually initiates a re-authentication of all 802.1X-enabled ports
or the specified 802.1X-enabled port
PE
Sets the number of seconds that the device remains in the quiet
state following a failed authentication exchange (for example, the
client provided an invalid password). To return to the default
configuration, use the no form of this command
ICE
Sets the number of seconds that the device waits for a response
to an Extensible Authentication Protocol (EAP)-request/identity
frame from the client before resending the request. To return to the
default configuration, use the no form of this command
ICE
Sets the maximum number of times that the device sends an
Extensible Authentication Protocol (EAP)-request/identity frame
(assuming that no response is received) to the client, before
restarting the authentication process. To return to the default
configuration, use the no form of this command
ICE
Sets the time for the retransmission of an Extensible
Authentication Protocol (EAP)-request frame to the client. To
return to the default configuration, use the no form of this
command
ICE