hit counter script

Cisco 3020 - Catalyst Blade Switch Command Reference Manual page 88

Cisco catalyst blade switch 3020 for hp command reference, rel. 12.2(25)sef1
Hide thumbs Also See for 3020 - Cisco Catalyst Blade Switch:
Table of Contents

Advertisement

dot1x auth-fail vlan
When a restricted VLAN port is moved to an unauthorized state, the authentication process restarts. If
the supplicant fails the authentication process again, the authenticator waits in the held state. After the
supplicant has correctly re-authenticated, all IEEE 802.1x ports are reinitialized and treated as normal
IEEE 802.1x ports.
When you reconfigure a restricted VLAN as a different VLAN, any ports in the restricted VLAN are also
moved, and the ports stay in their currently authorized state.
When you shut down or remove a restricted VLAN from the VLAN database, any ports in the restricted
VLAN are immediately moved to an unauthorized state, and the authentication process restarts. The
authenticator does not wait in a held state because the restricted VLAN configuration still exists. While
the restricted VLAN is inactive, all authentication attempts are counted so that when the restricted
VLAN becomes active, the port is immediately placed in the restricted VLAN.
The restricted VLAN is supported only in single host mode (the default port mode). For this reason,
when a port is placed in a restricted VLAN, the supplicant's MAC address is added to the MAC address
table, and any other MAC address that appears on the port is treated as a security violation.
Examples
This example shows how to configure a restricted VLAN on port 21:
Switch# configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)# interface gigabitethernet0/21
Switch(config-if)# dot1x auth-fail vlan 40
Switch(config-if)# end
Switch#
You can verify your configuration by entering the show dot1x [interface interface-id] privileged EXEC
command.
Related Commands
Command
dot1x auth-fail max-attempts
[max-attempts]
show dot1x
Cisco Catalyst Blade Switch 3020 for HP Command Reference
2-60
[interface interface-id]
Chapter 2
Cisco Catalyst Blade Switch 3020 for HP Cisco IOS Commands
Description
Configures the number of authentication attempts allowed
before assigning a supplicant to the restricted VLAN.
Displays IEEE 802.1x status for the specified port.
OL-8916-01

Advertisement

Table of Contents
loading

Table of Contents