Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards
Enabling 802.1x Authentication
To enable 802.1x port-based authentication, you must enable AAA and specify the authentication
method list. A method list describes the sequence and authentication methods to be queried to
authenticate a user.
The software uses the first method listed to authenticate users; if that method fails to respond, the
software selects the next authentication method in the method list. This process continues until there is
successful communication with a listed authentication method or until all defined methods are
exhausted. If authentication fails at any point in this cycle, the authentication process stops, and no other
authentication methods are attempted.
Beginning in privileged EXEC mode, follow these steps to configure 802.1x port-based authentication.
This procedure is required.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
DETAILED STEPS
Command or Action
Step 1
enable
Example:
Router> enable
Step 2
configure terminal
Example:
Router# configure terminal
Switch Port Analyzer (SPAN) destination port—You can enable 802.1x on a port that is a SPAN
–
destination port; however, 802.1x is disabled until the port is removed as a SPAN destination.
You can enable 802.1x on a SPAN source port.
enable
configure terminal
aaa authentication dot1x {default | listname} method1 [method2...]
interface interface-id
dot1x port-control auto
end
show dot1x
copy running-config startup-config
Purpose
Enables privileged EXEC mode.
Enter your password if prompted.
•
Enters global configuration mode.
How to Configure EtherSwitch HWICs
Book Title
25