×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

You can manage this Document

Configuration of 802.1x Authentication on SFE/SGE Managed Switches

Document

Fri, 07/08/2016 - 10:40
Apr 26th, 2016
User Badges:

Cisco Support Community

Article ID: 3682

Objectives

This article explains about the configuration of 802.1x port authentication on SFE/SGE managed switches. The 802.1x is an IEEE standard for port-based network access control.The authentication is used to configure 802.1x security parameters on each port. The authenticator acts like a security guard to a protected network. 802.1x allows a supplicant to request port access from an authenticator device to which it is connected. The supplicant can send data to a port if the supplicant is authenticated and authorized, or else discard it.

Applicable Devices

• SFE/SGE Managed Switches

Software Version

• v3.0.2.0

Port Authentication

Step 1. Log in to the web configuration utility to choose Security Suite > 802.1X > Authentication. The Authentication page opens:

Step 2. Click Edit. The Edit Host Authentication window appears:

Step 3.Choose a port from the Port drop-down list to configure.

Step 4. Choose a  host authentication from the Host Authentication drop-down list.

•  Single — Authorized port can be accessed by the client.

• Multiple Host — For single enabled port, multiple clients can be attached. Once one of the clients is authorized to access the network, all clients have access. Otherwise access is denied for all clients.

• Multi Session — Specific authorized hosts are given access to the network.

Step 5. Choose an option from the Action on Violation drop-down list. It defines the action to be taken to packets which are in single host mode, after the port is authorized, any MAC address received other than the client's causes violation. 

• Discard — It drops the packet based on the  user address.

• Forward —  It forwards the packet if user address is listed.

• Shut Down — The port is shutdown until the device is reset.

Step 6. Check Enable Traps to enable traps on the device. This is available only if you choose Single from in Step 4.

Step 7. Enter a value in the Trap Frequency field.The range is from 1 to 1000000 and the default value is 10.

Step 8. Click Apply.

Caution: This only saves your configuration to the running configuration file. This means any changes made will be lost if the device is rebooted. If you wish to save these changes even after a system reboot, you need to copy the running configuration file to the startup configuration file. See Copy Configuration File on SFE/SGE Series Managed Switches for more information on how to do this.

Loading.

Actions

This Document