Configuring Port-Based Access Control (802.1x)

Configuring Switch Ports as 802.1x Authenticators

aaa port-access authenticator < port-list> (Syntax Continued)

[ unauth-vid < vlan-id>]

Configures an exsiting static VLAN to be the Unauthorized- Client VLAN. This enables you to provide a path for clients without supplicant software to download the software and begin an authentication session. Refer to “802.1x Open VLAN Mode” on page 6-20.

[ auth-vid < vid >

Configures an existing, static VLAN to be the Authorized- Client VLAN. Refer to “802.1x Open VLAN Mode” on page 6-20.

[ initialize ]

On the specified ports, blocks inbound and outbound traffic and restarts the 802.1x authentication process. This happens only on ports configured with control auto and actively operating as 802.1x authenticators. Note: If a specified port is configured with control authorized and port-security, and the port has learned an autho­ rized address, the port will remove this address and learn a new one from the first packet it receives.

[ reauthenticate ]

Forces reauthentication (unless the authenticator is in 'HELD' state).

[ clear-statistics ]

Clears authenticator statistics counters.

6-17

Page 151
Image 151
HP 4100gl manual Clears authenticator statistics counters