Cisco Support Community
This article explains about the configuration of 802.1x port authentication on SFE/SGE managed switches. The 802.1x is an IEEE standard for port-based network access control.The authentication is used to configure 802.1x security parameters on each port. The authenticator acts like a security guard to a protected network. 802.1x allows a supplicant to request port access from an authenticator device to which it is connected. The supplicant can send data to a port if the supplicant is authenticated and authorized, or else discard it.
• SFE/SGE Managed Switches
Step 1. Log in to the web configuration utility to choose Security Suite > 802.1X > Authentication. The Authentication page opens:
Step 2. Click Edit. The Edit Host Authentication window appears:
Step 3.Choose a port from the Port drop-down list to configure.
Step 4. Choose a host authentication from the Host Authentication drop-down list.
• Single — Authorized port can be accessed by the client.
• Multiple Host — For single enabled port, multiple clients can be attached. Once one of the clients is authorized to access the network, all clients have access. Otherwise access is denied for all clients.
• Multi Session — Specific authorized hosts are given access to the network.
Step 5. Choose an option from the Action on Violation drop-down list. It defines the action to be taken to packets which are in single host mode, after the port is authorized, any MAC address received other than the client's causes violation.
• Discard — It drops the packet based on the user address.
• Forward — It forwards the packet if user address is listed.
• Shut Down — The port is shutdown until the device is reset.
Step 6. Check Enable Traps to enable traps on the device. This is available only if you choose Single from in Step 4.
Step 7. Enter a value in the Trap Frequency field.The range is from 1 to 1000000 and the default value is 10.
Step 8. Click Apply.
Caution: This only saves your configuration to the running configuration file. This means any changes made will be lost if the device is rebooted. If you wish to save these changes even after a system reboot, you need to copy the running configuration file to the startup configuration file. See Copy Configuration File on SFE/SGE Series Managed Switches for more information on how to do this.