Contents
xi
Catalyst 3750 SwitchSoftware Configuration Guide
OL-8550-09
CipherSuites 9-52
Configuring Secure HTTP Servers and Clients 9-53
Default SSL Configuration 9-53
SSL Configuration Guidelines 9-53
Configuring a CA Trustpoint 9-54
Configuring the Secure HTTP Server 9-55
Configuring the Secure HTTP Client 9-56
Displaying Secure HTTP Server and Client Status 9-57
Configuring the Switch for Secure Copy Protocol 9-57
Information About Secure Copy 9-58
CHAPTER
10 Configuring IEEE 802.1x Port-Based Authentication 10-1
Understanding IEEE 802.1x Port-Based Authentication 10-1
Device Roles 10-3
Authentication Process 10-4
Authentication Initiation and Message Exchange 10-6
Authentication Manager 10-8
Port-Based Authentication Methods 10-8
Per-User ACLs and Filter-Ids 10-9
Authentication Manager CLI Commands 10-10
Ports in Authorized and Unauthorized States 10-11
802.1x Authentication and Switch Stacks 10-12
802.1x Host Mode 10-13
Multidomain Authentication 10-13
802.1x Multiple Authentication Mode 10-14
MAC Move 10-15
MAC Replace 10-16
802.1x Accounting 10-17
802.1x Accounting Attribute-Value Pairs 10-17
802.1x Readiness Check 10-18
802.1x Authentication with VLAN Assignment 10-18
Using 802.1x Authentication with Per-User ACLs 10-20
802.1x Authentication with Downloadable ACLs and Redirect URLs 10-21
Cisco Secure ACS and Attribute-Value Pairs for the Redirect URL 10-22
Cisco Secure ACS and Attribute-Value Pairs for Downloadable ACLs 10-23
VLAN ID-based MAC Authentication 10-23
802.1x Authentication with Guest VLAN 10-23
802.1x Authentication with Restricted VLAN 10-24
802.1x Authentication with Inaccessible Authentication Bypass 10-25