beautypg.com

4 dot1x eapor enable, 5 dot1x enable, 6 dot1x privateclient enable – Accton Technology ES4710BD User Manual

Page 515

background image

514

E

ES4710BD 10 Slots L2/L3/L4 Chassis Switch

20.2.2.4 dot1x eapor enable

Command: dot1x eapor enable

no dot1x eapor enable

Function: Enables the EAP relay authentication function in the switch; the “no dot1x eapor

enable” command sets EAP local end authentication.

Command mode: Global Mode
Default: EAP relay authentication is used by default.
Usage Guide: The switch and RADIUS may be connected via Ethernet or PPP. If an Ethernet

connection exists between the switch and RADIUS server, the switch needs to
authenticate the user by EAP relay (EAPoR authentication); if the switch connects to
the RADIUS server by PPP, the switch will use EAP local end authentication (CHAP
authentication). The switch should use different authentication methods according to
the connection between the switch and the authentication server.

Example: Setting EAP local end authentication for the switch.
Switch(Config)#no dot1x eapor enable

20.2.2.5 dot1x

enable

Command: dot1x enable

no dot1x enable

Function: Enables the 802.1x function in the switch and ports: the "no dot1x enable" command

disables the 802.1x function.

Command mode: Global Mode and Interface Mode.
Default: 802.1x function is not enabled in global mode by default; if 802.1x is enabled under

Global Mode, 802.1x will not be enabled for the ports by default.

Usage Guide: The 802.1x authentication for the switch must be enabled first to enable 802.1x

authentication for the respective ports. If Spanning Tree or MAC binding is enabled
on the port, or the port is a Trunk port or member of port aggregation group, 802.1x
function cannot be enabled for that port unless such conditions are removed.

Example: Enabling the 802.1x function of the switch and enable 802.1x for port 1/12.
Switch(Config)#dot1x enable
Switch(Config)#interface ethernet 1/12
Switch(Config-Ethernet0/0/12)#dot1x enable

20.2.2.6 dot1x privateclient enable

Command: dot1x privateclient enable

no dot1x privateclient enable

Function: Enables the switch to force client software to use Edge-Core’s proprietary 802.1x

authentication packet format; the “no dot1x privateclient enable” command disables

the function and allow the client software to use standard 802.1x authentication packet

format.

Command mode: Global Mode
Default: Proprietary authentication is not supported by the switch.
Usage Guide: To implement the Edge-Core overall solution, Edge-Core proprietary 802.1x

See also other documents in the category Accton Technology Computer Accessories: