Alcatel-Lucent 6850-48 参考指南

AAA Commands

page 58-26

OmniSwitch CLI Reference Guide

Enables/disables the switch for 802.1X authentication.

aaa authentication 802.1x server1 [server2] [server3] [server4]

The name of the RADIUS authentication server used for 802.1X authen-
tication. (Note that only RADIUS servers are supported for 802.1X 
authentication.) At least one server is required. RADIUS server names 
are set up through the 

 command.

The names of backup servers for authenticating 802.1X users. Up to 3 
backups may be specified; include a space between each server name. 
These backups are only used if server1 becomes unavailable. They are 
polled in the order they are listed in this command. The first available 
server becomes the authentication server.

N/A

OmniSwitch 6400, 6850, 6855, 9000, 9000E

• Use the no form of this command to disable 802.1x authentication for the switch.

• Use the 

 command to enable or disable ports for 802.1X. Use the 

 command to 

configure authentication parameters for a dedicated 802.1X port.

• Up to 4 RADIUS servers (total) may be specified. At least one server is required. Each server name 

should be separated by a space.

• The switch uses only the first available server in the list to check for user information. For example, if 

server1 is not available, the switch will poll server2. If user information is not found on the first avail-
able server, the authentication request will fail. 

• RADIUS servers may each have an additional backup specified through the 

 

command.

• Before any device is authenticated through an 802.1X port, the port will only process 802.1X frames 

(EAPoL frames) from an unknown source.

• Note that multiple supplicants can be authenticated on a given 802.1X port. Each supplicant MAC 

address received on the port is authenticated and learned separately. Only those that authenticate 
successfully are allowed on the port; those that fail authentication are blocked on the 802.1X port.