Auth two-step enable, Auth, Two-step enable – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Authentication Commands

Software Reference for x310 Series Switches

43.26

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

auth two-step enable

This command enables a two-step authentication feature on an interface. When this
feature is enabled, the supplicant is authorized in a two-step process. If authentication
succeeds, the supplicant becomes authenticated. This command will apply the two-step
authentication method based on 802.1X, MAC or Web authentication.

The no variant of this command disables the two-step authentication feature.

Syntax

auth two-step enable

no auth two-step enable

Default

Default.

Mode

Interface Configuration for a port.

Usage

The single step authentication methods (either user or device authentication) have a
potential security risk:

■

an unauthorized user can access the network with an authorized device, or

■

an authorized user can access the network with an unauthorized device.

Two-step authentication solves this problem by authenticating both the user and the
device. The supplicant will only become authenticated if both these steps are successful. If
the first authentication step fails, then the second step is not started.

Examples

To enable the two step authentication feature, use the following commands:

To disable the two step authentication feature, use the following commands:

awplus#

configure terminal

awplus(config)#

interface port1.0.2

awplus(config-if)#

auth two-step enable

awplus#

configure terminal

awplus(config)#

interface port1.0.2

awplus(config-if)#

no auth two-step enable