beautypg.com

Dot1x max-auth-fail – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 1075

background image

802.1X Commands

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

41.9

dot1x max-auth-fail

Use this command to configure the maximum number of login attempts for a supplicant
(client device) using the auth-fail vlan feature, when using 802.1X port authentication on
an interface.

The no variant of this command resets the maximum login attempts for a supplicant
(client device) using the auth-fail vlan feature, to the default configuration of 3 login
attempts.

Syntax

dot1x max-auth-fail <0-10>

no dot1x max-auth-fail

Default

The default maximum number of login attempts for a supplicant on an interface using
802.1X port authentication is three (3) login attempts.

Mode

Interface Configuration for a static channel, a dynamic (LACP) channel group, or a switch
port.

Usage

This command sets the maximum number of login attempts for supplicants on an
interface. The supplicant is moved to the auth-fail VLAN from the Guest VLAN after the
number of failed login attempts using 802.1X authentication is equal to the number set
with this command.

See the related

auth auth-fail vlan command on page 43.3

. See also the section

“Failed

Authentication VLAN” on page 42.29

for information about the auth-fail VLAN feature.

See the section

“Limitations on Allowed Feature Combinations” on page 42.29

for

information about restrictions regarding combinations of authentication enhancements
working together.

Examples

To configure the maximum number of login attempts for a supplicant on interface
port1.0.2

to a single (1) login attempt, use the commands:

To configure the maximum number of login attempts for a supplicant on interface

port1.0.2

to the default number of three (3) login attempts, use the commands:

Validation

Commands

show running-config

Parameter

Description

<0-10>

Specify the maximum number of login attempts for supplicants
on an interface using 802.1X port authentication.

awplus#

configure terminal

awplus(config)#

interface port1.0.2

awplus(config-if)#

dot1x max-auth-fail 1

awplus#

configure terminal

awplus(config)#

interface port1.0.2

awplus(config-if)#

no dot1x max-auth-fail