Alcatel-Lucent 6850-48 参考指南

802.1X Commands

OmniSwitch CLI Reference Guide

page 59-9

Configures a supplicant device classification policy for an 802.1x port. This type of policy uses 802.1x 
authentication via a remote RADIUS server. A supplicant is any device that uses the 802.1x protocol for 
authentication. 

802.1x slot/port supplicant policy authentication [[pass] {group-mobility | user-network-profile 
profile_name | vlan vid | default-vlan | block | captive-portal}...] [[fail] {user-network-profile 
profile_name | vlan vid | block | captive-portal}...]

The slot and port number of the 802.1x port.

Indicates which policies to apply if 802.1x authentication is successful 
but does not return a VLAN ID.

Indicates which policies to apply if 802.1x authentication fails or if 
successful authentication returns a VLAN ID that does not exist.

Use Group Mobility rules for device classification. 

The name of an existing User Network Profile (UNP) to use for device 
classification. 

Use this VLAN ID number for device classification.

Assigns supplicant to the default VLAN for the 802.1x port.

Blocks supplicant access on the 802.1x port.

Use Captive Portal for web-based device classification. 

When 802.1x is enabled on the port, a default supplicant policy is defined for the port. This policy uses the 
group-mobility and default-vlan parameters for the pass case and the block parameter for the fail case. 

When the 802.1x supplicant policy authentication command is used without specifying any parameters, 
the following values for the pass and fail case are configured by default:

OmniSwitch 6400, 6850, 6855, 9000, 9000E

• Supplicant device classification policies are applied only when successful 802.1x authentication does 

not return a VLAN ID, returns a VLAN ID that does not exist, or authentication fails.

pass block

block