3com 4500 PWR 26-PORT User Manual
240
C
HAPTER
11: U
SING
AAA
AND
RADIUS C
OMMANDS
Parameter
user-number:
Specifies the limit to the amount of supplicants on the port,
ranging from 1 to 1024.
By default, the maximum user number is 1024.
interface interface-list:
Ethernet interface list including several Ethernet
interfaces, expressed in the format
interface-list = { interface-num [ to
interface-num ] } & < 1-10 >
.
interface-num
specifies a single Ethernet
interface in the format
interface-num = { interface-type interface-num |
interface-name }
, where interface-type specifies the interface type,
interface-num
specifies the interface number and
interface-name
specifies the
interface name. For the respective meanings and value ranges, see the parameters
in the Port Command chapter.
in the Port Command chapter.
Description
Use the
dot1x max-user
command to configure a limit to the amount of
supplicants on the specified interface using 802.1x. Use the
undo dot1x
max-user
command to restore the default value.
This command is used for setting a limit to the amount of supplicants that 802.1x
can hold on the specified interface. This command takes effect on the interface
specified by the parameter
can hold on the specified interface. This command takes effect on the interface
specified by the parameter
interface-list
when executed in System View. It
takes effect on all the interfaces when no interface is specified. The parameter
interface-list
cannot be entered when the command is executed in Ethernet
Port View and it takes effect only on the current interface.
Related command:
display dot1x
.
Example
Configure the interface Ethernet 1/0/2 to hold no more than 32 802.1x users.
<4500>system-view
System View: return to User View with Ctrl-Z
[4500]dot1x max-user 32 interface ethernet 1/0/2
dot1x port-control
Syntax
dot1x port-control { auto | authorized-force | unauthorized-force-}
[ interface interface-list ]
undo dot1x port-control [ interface interface-list ]
View
Ethernet Port View
Parameter
auto:
Automatic identification mode, configuring the initial state of the interface
as unauthorized. The user is only allowed to receive or transmit EAPoL packets but
not to access the network resources. If the user passes the authentication flow, the
interface will Switch over to the authorized state and then the user is allowed to
access the network resources. This is the most common case.
not to access the network resources. If the user passes the authentication flow, the
interface will Switch over to the authorized state and then the user is allowed to
access the network resources. This is the most common case.