Configuring Port-Based Access Control (802.1x)

Displaying 802.1x Configuration, Statistics, and Counters

show port-access authenticator (Syntax Continued)

config [ [e] < port-list>]

Shows:

Whether port-access authenticator is active

The 802.1x configuration of the ports configured as 802.1x authenticators

If you do not specify < port-list>, the command lists all ports configured as 802.1x port-access authenticators. Does not display data for a specified port that is not enabled as an authenticator.

statistics [ [e] < port-list>]

Shows:

Whether port-access authenticator is active

The statistics of the ports configured as 802.1x authenticators, including the supplicant’s MAC address, as determined by the content of the last EAPOL frame received on the port.

Does not display data for a specified port that is not enabled as an authenticator.

session-counters [ [e] < port-list>]

Shows:

Whether port-access authenticator is active

The session status on the specified ports configured as 802.1x authenticators

Also, for each port, the "User" column lists the user name the supplicant included in its response packet. (For the switch, this is the identity setting included in the supplicant command—page 6-35.) Does not display data for a specified port that is not enabled as an authenticator.

Viewing 802.1x Open VLAN Mode Status

You can examine the switch’s current VLAN status by using the show port­ access authenticator and show vlan < vlan-id> commands as illustrated in this section. Figure 6-5 shows an example of show port-access authenticator output, and table 6-1 describes the data that this command displays. Figure 6-6 shows related VLAN data that can help you to see how the switch is using statically configured VLANs to support 802.1x operation.

6-38

Page 172
Image 172
HP 4100gl manual Viewing 802.1x Open Vlan Mode Status