beautypg.com

Multi-device port authentication configuration, Enabling multi-device port authentication, Globally enabling multi-device port authentication – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 259

background image

Multi-device port authentication configuration

Configuring multi-device port authentication on the Brocade device consists of the following tasks:

• Enabling multi-device port authentication globally and on individual interfaces
• Specifying the format of the MAC addresses sent to the RADIUS server (optional)
• Specifying the authentication-failure action (optional)
• Enabling and disabling SNMP traps for multi-device port authentication
• Defining MAC address filters (optional)
• Configuring dynamic VLAN assignment (optional)
• Dynamically Applying IP ACLs to authenticated MAC addresses
• Enabling denial of service attack protection (optional)
• Clearing authenticated MAC addresses (optional)
• Disabling aging for authenticated MAC addresses (optional)
• Configuring the hardware aging period for blocked MAC addresses
• Specifying the aging time for blocked MAC addresses (optional)

Enabling multi-device port authentication

To enable multi-device port authentication, you first enable the feature globally on the device. On some
Brocade devices, you can then enable the feature on individual interfaces.

Globally enabling multi-device port authentication

To globally enable multi-device port authentication on the device, enter the following command.

device(config)#mac-authentication enable

Syntax: [no] mac-authentication enable

Enabling multi-device port authentication on an interface

To enable multi-device port authentication on an individual interface, enter a command such as the
following.

device(config)#mac-authentication enable ethernet 3/1

Syntax: [no] mac-authentication enable [ port | all ]

The all option enables the feature on all interfaces at once.

You can enable the feature on an interface at the interface CONFIG level.

of enabling multi-device port authentication on an interface

device(config)#interface e 3/1

device(config-if-e1000-3/1)#mac-authentication enable

Syntax: [no] mac-authentication enable

You can also configure multi-device port authentication commands on a range of interfaces.

of enabling multi-device port authentication on a range of interfaces

Multi-device port authentication configuration

FastIron Ethernet Switch Security Configuration Guide

259

53-1003088-03

See also other documents in the category Brocade Computer Accessories: