Aaa authentication dot1x – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual
Page 1237
AAA Commands
Software Reference for x310 Series Switches
C613-50046-01 REV A
AlliedWare Plus
TM
Operating System - Version 5.4.4C
45.15
aaa authentication dot1x
This command enables 802.1X-based Port Authentication globally and allows you to
enable an authentication method list. It is automatically applied to every interface
running 802.1X-based Port Authentication.
Use the no variant of this command to globally disable 802.1X-based Port Authentication.
Syntax
aaa authentication dot1x default group {<group-name>|radius}
no aaa authentication dot1x default
Default
802.1x-based Port Authentication is disabled by default.
Mode
Global Configuration
Usage
Use this command to specify the default method list to use for authentication on all switch
ports with 802.1X enabled. Use the no variant of this command to reset the default
authentication method list for 802.1X, to its default, that is, to use the group radius,
containing all RADIUS servers configured by the radius-server host command.
There are two ways to define servers where RADIUS accounting messages are sent:
■
group radius : use all RADIUS servers configured by
command
■
group <group-name> : use the specified RADIUS server group configured with the
command
Examples
To enable 802.1X-based Port Authentication globally with all RADIUS servers, and use all
available RADIUS servers, use the command:
To disable 802.1X-based Port Authentication, use the command:
Related Commands
aaa accounting dot1x
aaa group server
dot1x port-control
radius-server host
Parameter
Description
radius
Use all RADIUS servers.
<group-name>
Server group name.
awplus#
configure terminal
awplus(config)#
aaa authentication dot1x default group radius
awplus#
configure terminal
awplus(config)#
no aaa authentication dot1x default