Configuring Port-Based Access Control (802.1x)

Configuring Switch Ports To Operate As Supplicants for 802.1x Connections to Other Switches

Configuring Switch Ports To Operate As

Supplicants for 802.1x Connections to

Other Switches

802.1x Authentication Commands

page 6-14

802.1x Supplicant Commands

 

[no] aaa port-access < supplicant < [ethernet] < port-list>

page 6-34

[ auth-timeout held-period start-period max-start initialize

page 6-35

identity secret clear-statistics ]

 

802.1x-Related Show Commands

page 6-37

RADIUS server configuration

pages 6-19

 

 

You can configure a switch port to operate as a supplicant in a connection to a port on another 802.1x-aware switch to provide security on links between 802.1x-aware switches. (Note that a port can operate as both an authenticator and a supplicant.)

For example, suppose that you want to connect two switches, where:

Switch "A" has port A1 configured for 802.1x supplicant operation

You want to connect port A1 on switch "A" to port B5 on switch "B".

 

Switch "B"

 

Port B5

Port A1

 

Switch "A"

 

Port A1 Configured as an

 

802.1x Supplicant

 

LAN Core

RADIUS Server

 

Figure 6-4. Example of Supplicant Operation

6-33

Page 167
Image 167
HP 4100gl manual Example of Supplicant Operation, 802.1x Authentication Commands 802.1x Supplicant Commands