ES4710BD 10 Slots L2/L3/L4 Chassis Switch

3) Configure expanded 802.1x function: for the switch.

 

 

 

 

 

 

Command

Explanation

 

 

Global Mode

 

 

 

dot1x macfilter enable

Enables the 802.1x address filter function in the switch; the

"no dot1x macfilter enable" command disables the 802.1x

no dot1x macfilter enable

address filter function.

 

 

 

 

 

dot1x accept-mac

 

 

 

<mac-address> [interface

Adds 802.1x address

filter table entry, the “no

dot1x

<interface-name>]

accept-mac command

deletes 802.1x filter address

table

no dot1x accept-mac

entries.

 

 

<mac-address> [interface

 

 

 

 

 

<interface-name>]

 

 

 

dot1x eapor enable

Enables the EAP relay authentication function in the switch;

the “no dot1x eapor enable” command sets EAP local end

no dot1x eapor enable

authentication.

 

 

 

 

 

3. Supplicant related property configuration

 

 

Command

Explanation

 

 

Global Mode

 

 

 

 

Sets the number of EAP request/MD5 frame to be sent before

dot1x max-req <count>

the switch re-initials authentication on no supplicant

no dot1x max-req

response, the “no dot1x max-req command restores the

 

default setting.

 

 

dot1x re-authentication

Enables periodical supplicant authentication; the “no dot1x

no dot1x re-authentication

re-authentication command disables this function.

 

dot1x timeout quiet-period

Sets time to keep silent on port authentication failure; the “no

<seconds>

dot1x timeout quiet-period command restores the default

no dot1x timeout quiet-period

value.

 

 

dot1x timeout re-authperiod

Sets the supplicant re-authentication interval; the “no dot1x

<seconds>

timeout re-authperiod command restores the default

no dot1x timeout

setting.

 

 

re-authperiod

 

 

 

 

 

dot1x timeout tx-period

Sets the interval for the supplicant to re-transmit EAP

<seconds>

request/identity frame; the “no dot1x timeout tx-period

no dot1x timeout tx-period

command restores the default setting.

 

Admin Mode

 

 

 

dot1x re-authenticate

Enables IEEE 802.1x re-authentication (no wait timeout

[interface <interface-name>]

requires) for all ports or a specified port.

 

4.Authentication Server (RADIUS server) related property configuration

1) Configure RADIUS authentication key.

Command

Explanation

511

Page 512
Image 512
Accton Technology ES4710BD manual Seconds, Interface interface-name