Aaa 802.1x authentication configuration – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

AAA Introduction and Configuration

Software Reference for x310 Series Switches

44.6

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

To configure a user login authentication method list called USERS to use first the
TACACS+ servers for user login authentication and then the local user database, use the
following commands:

Step 3:

Apply Method List to Interface Port or Line:

Apply that method list to the port or line as required.

For most Authentication and Accounting types, the only possible server list is default, and
the only server that can be put into it is radius. You will typically use all RADIUS servers, so
group radius can be used, rather than having to create a specific user group. Often the
configuration of a given Authentication or Accounting type will consist of a single
command, the command that defines the default server list, which contains just one
server.

AAA 802.1x Authentication Configuration:

AAA 802.1x authentication will typically be configured with the following commands.

To enable 802.1x Authentication globally for all RADIUS servers, use the following
commands:

awplus#

configure terminal

awplus(config)#

aaa authentication login USERS group tacacs+
local

awplus#

configure terminal

awplus(config)#

line console 0

awplus(config-line)#

login authentication USERS

awplus#

configure terminal

awplus(config)#

aaa authentication dot1x default group radius