Sample authentication configurations, Sample 802.1x authentication configuration – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

AAA Introduction and Configuration

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

44.7

Sample Authentication Configurations

Sample 802.1X Authentication Configuration

See the below sample configuration script for a sample 802.1X authentication
configuration. Copy and paste then edit the sample 802.1X authentication configuration
in your config file. See the

edit

command in the

Chapter 7, File Management

Commands

for further information.

Output

The 802.1X authentication feature needs the

aaa authentication dot1x

command and

the

dot1x port-control

command configured on an interface. See

Chapter 45, AAA

Commands

and

Chapter 41, 802.1X Commands

for command information to edit this

configuration.

The local RADIUS Server has been configured to use 802.1X authentication in this sample
configuration. See the

radius-server local

and

server enable

commands in

Chapter 51,

Local RADIUS Server Commands

for command information to edit this sample

configuration.

This sample configuration enables 802.1X authentication on interface vlan1 with IP
address 192.168.1.120. Change the VLAN ID and IP address as required for your
configuration.

Figure 44-1: Sample 802.1X Authentication Configuration

!
radius-server host 127.0.0.1 key awplus-local-radius-server
!
aaa authentication dot1x default group radius
!
radius-server local
server enable
nas 127.0.0.1 key awplus-local-radius-server
user guest password guest!
!
no spanning-tree rstp enable
!
interface port1.0.1
switchport
switchport mode access
dot1x port-control auto
!
interface vlan1
ip address 192.168.1.120/24
!