Item | Description | |
| Specifies whether to enable periodic online user | |
| port. | |
| Periodic online user | |
| users and updates the authorization attributes assigned by the server, such as | |
| the ACL, and VLAN. The | |
| ||
| NOTE: | |
| • The periodic online user | |
| authentication server in the | |
Enable | timer overrides the timer setting on the access device, and it enables | |
periodic online user | ||
| ||
| configured on the access device. Support for the server assignment of | |
| ||
| the server vary with servers. | |
| • The VLAN assignment status must be consistent before and after | |
| ||
| ||
| authentication server has assigned no VLAN before | |
| must not assign one at | |
| the user to be logged off. The VLANs assigned to an online user before | |
| and after | |
|
| |
Guest VLAN | Specifies an existing VLAN as the guest VLAN. | |
For more information, see "Configuring an 802.1X guest VLAN." | ||
| ||
|
| |
| Specifies whether to enable | |
Enable MAC VLAN | Required when MAC Based is selected for Port Control. | |
NOTE: | ||
| ||
| Only hybrid ports support the feature. | |
| Specifies an existing VLAN as the | |
have failed 802.1X authentication. | ||
| For more information, see "Configuring an | |
|
|
Configuring an 802.1X guest VLAN
Configuration prerequisites
•Create the VLAN to be specified as the 802.1X guest VLAN.
•If the
Configuration guidelines
•The 802.1X guest VLANs on different ports can be different.
•Assign different IDs to the port VLAN and the 802.1X guest VLAN on a port, so the port can correctly process incoming VLAN tagged traffic.
•With 802.1X authentication, a hybrid port is always assigned to a VLAN as an untagged member. After the assignment, do not reconfigure the port as a tagged member in the VLAN.
•Use Table 106 when you configure multiple security features on a port.
335