Configuring Port-Based and User-Based Access Control (802.1X)

General Setup Procedure for 802.1X Access Control

General Setup Procedure for 802.1XAccess Control

Do These Steps Before You Configure 802.1X Operation

1.Configure a local username and password on the switch for both the Operator (login) and Manager (enable) access levels. (While this may or may not be required for your 802.1X configuration, ProCurve recommends that you use a local username and password pair at least until your other security measures are in place.)

For switches covered in this guide, the local operator password config- ured with the password command is not accepted as an 802.1X authenti- cator credential. The port-access command is used to configure the operator username and password that are used as 802.1X credentials for network access to the switch. 802.1X network access is not allowed unless a password has been configured using the password port-accesscommand.

Syntax: password port-access [user-name <name>] <password >

Configures the operator username and password used to access the network through 802.1X authentication.

user-name <name>

Operator username (text string) used only for local authentication of 802.1X clients. This value is different from the local operator user- name configured with the password command for management access.

<password>

Operator password (text string) used only for local authentication of 802.1X clients. This value is different from the local operator password configured with the password command for management access.

Figure 10-2shows how to configure a local operator password for 802.1X access.

10-14