User Manual

UMN:CLI

SURPASS hiD 6615 S223/S323 R1.5

 

 

 

 

 

4.5.7Sample Configuration

The following is to show the configuration after configuring pot number 4 as the authenti- cation port and registering IP address of authentication port and information of RADIUS server.

SWTICH(config)# dot1x system-auth-control

SWTICH(config)# dot1x nas-port4

SWTICH(config)# dot1x port-control force-authorized 4

SWTICH(config)# dot1x radius-server host 10.1.1.1 auth-port 4 key test

SWTICH(config)# show dot1x

802.1x authentication is enabled.

RADIUS Server : 10.1.1.1 (Auth key : test)

-------------------------------------------------------

 

1

2

3

4

802.1x

123456789012345678901234567890123456789012

-------------------------------------------------------

PortEnable ...p......................................

PortAuthed ...u......................................

MacEnable ..........................................

MacAuthed ..........................................

-------------------------------------------------------

p= port-based, m = mac-based, a = authenticated, u = unauthenticated SWTICH(config)#

The following is configuring a term of re-authentication as 1800 and a tem of re- authentication as 1000 sec.

SWTICH(config)# dot1x timeout quiet-period 1000 4

SWTICH(config)# dot1x timeout reauth-period 1800 4

SWTICH(config)# dot1x reauth-enable 4

SWTICH(config)# show dot1x 4

Port 4

SystemAuthControl : Enabled

ProtocolVersion

: 0

PortControl

: Force-Authorized

PortStatus

: Unauthorized

ReauthEnabled

: True

QuietPeriod

: 1000

ReauthPeriod

: 1800

SWTICH(config)#

 

The following is an example of showing the configuration after configuring the authentica- tion based on MAC address.

SWTICH(config)# dot1x auth-mode mac-base 4

SWTICH(config)# show dot1x

802.1x authentication is enabled.

RADIUS Server : 10.1.1.1 (Auth key : test)

-------------------------------------------------------

 

1

2

3

4

802.1x

123456789012345678901234567890123456789012

-------------------------------------------------------

PortEnable ..........................................

A50010-Y3-C150-2-7619

71

Page 71
Image 71
Siemens S223, S323 user manual SWTICHconfig# dot1x system-auth-control, SWTICHconfig# dot1x auth-mode mac-base