ES4710BD 10 Slots L2/L3/L4 Chassis Switch

20.2.2.4dot1x eapor enable

Command: dot1x eapor enable no dot1x eapor enable

Function: Enables the EAP relay authentication function in the switch; the “no dot1x eapor enable” command sets EAP local end authentication.

Command mode: Global Mode

Default: EAP relay authentication is used by default.

Usage Guide: The switch and RADIUS may be connected via Ethernet or PPP. If an Ethernet connection exists between the switch and RADIUS server, the switch needs to authenticate the user by EAP relay (EAPoR authentication); if the switch connects to the RADIUS server by PPP, the switch will use EAP local end authentication (CHAP authentication). The switch should use different authentication methods according to the connection between the switch and the authentication server.

Example: Setting EAP local end authentication for the switch. Switch(Config)#no dot1x eapor enable

20.2.2.5dot1x enable

Command: dot1x enable no dot1x enable

Function: Enables the 802.1x function in the switch and ports: the "no dot1x enable" command disables the 802.1x function.

Command mode: Global Mode and Interface Mode.

Default: 802.1x function is not enabled in global mode by default; if 802.1x is enabled under Global Mode, 802.1x will not be enabled for the ports by default.

Usage Guide: The 802.1x authentication for the switch must be enabled first to enable 802.1x authentication for the respective ports. If Spanning Tree or MAC binding is enabled on the port, or the port is a Trunk port or member of port aggregation group, 802.1x function cannot be enabled for that port unless such conditions are removed.

Example: Enabling the 802.1x function of the switch and enable 802.1x for port 1/12. Switch(Config)#dot1x enable

Switch(Config)#interface ethernet 1/12 Switch(Config-Ethernet0/0/12)#dot1x enable

20.2.2.6dot1x privateclient enable

Command: dot1x privateclient enable no dot1x privateclient enable

Function: Enables the switch to force client software to use Edge-Core’s proprietary 802.1x authentication packet format; the “no dot1x privateclient enable” command disables the function and allow the client software to use standard 802.1x authentication packet format.

Command mode: Global Mode

Default: Proprietary authentication is not supported by the switch.

Usage Guide: To implement the Edge-Core overall solution, Edge-Core proprietary 802.1x

514

Page 514 Page 516
Page 515
Image 515
Accton Technology ES4710BD manual 20.2.2.4 dot1x eapor enable, 20.2.2.5 dot1x enable, 20.2.2.6 dot1x privateclient enable
Page 514 Page 516
Top Page Image Contents