8-42
Configuring Port-Based and Client-Based Access Control (802.1X)
Configuring Switch Ports To Operate As Supplicants for 802.1X Connections to Other Switches
Configure the port access type.
Configuring Switch Ports To Operate As
Supplicants for 802.1X Connections to
Other Switches
You can configure a switch port to operate as a supplicant in a connection to
a port on another 802.1X-aware switch to provide security on links between
802.1X-aware switches. (A port can operate as both an authenticator and a
supplicant.)
Example
Suppose that you want to connect two switches, where:
Syntax: aaa port-access auth < port-list > client-limit < 1 - 8>
Configures client-based 802.1X authentication on the
specified ports and sets the number of authenticated
devices the port is allowed to learn. For more on this
command, refer to “Configuring Switch Ports as 802.1X
Authenticators” on page 8-17.)
— Or —
no aaa port-access auth < port-list > client-limit
Configures port-based 802.1X authentication on the
specified ports, which opens the port.
802.1X Authentication Commands page 8-17
802.1X Supplicant Commands
[no] aaa port-access < supplicant > [ethernet] < port-list > page 8-44
[auth-timeout | held-period | start-period | max-start | initialize |
identity | secret | clear-statistics]
page 8-44
802.1X-Related Show Commands page 8-47
RADIUS server configuration pages 8-24
