Cisco Systems EA6500 Manual De Usuario

These sections describe how to configure 802.1X port-based authentication:

 

 

 

 

 

To enable 802.1X port-based authentication, you must enable AAA and specify the authentication 
method list. A method list describes the sequence and authentication methods to be queried to 
authenticate a user. 

The software uses the first method listed to authenticate users; if that method fails to respond, the 
software selects the next authentication method in the method list. This process continues until there is 
successful communication with a listed authentication method or until all defined methods are 
exhausted. If authentication fails at any point in this cycle, the authentication process stops, and no other 
authentication methods are attempted.

To configure 802.1X port-based authentication, perform this task:

Router(config)# aaa new-model 

Enables AAA.

Router(config)# no aaa new-model 

Disables AAA.

Router(config)# aaa authentication dot1x 

{default} method1

 

[method2

...

]

Creates an 802.1X port-based authentication method list.

Router(config)# no aaa authentication dot1x 

{default | list_name}

Clears the configured method list.

Router(config)# dot1x system-auth-control 

Globally enables 802.1X port-based authentication.

Router(config)# no dot1x system-auth-control 

Globally disables 802.1X port-based authentication.

Router(config)# interface type

1

 slot/port 

Enters interface configuration mode and specifies the 
interface to be enabled for 802.1X port-based 
authentication.

Router(config-if)# dot1x port-control auto 

Enables 802.1X port-based authentication on the 
interface.

Router(config-if)# no dot1x port-control auto 

Disables 802.1X port-based authentication on the 
interface.