Dot1X Host-Mode - Cisco 300 Series Cli Manual
Small business 300 series managed switches
command line interface guide release 1.3
Hide thumbs
Also See for 300 Series:
- Cli manual (1117 pages) ,
- Administration manual (586 pages) ,
- Quick start manual (72 pages)
Table of Contents
Advertisement
22
336
22.16 dot1x host-mode
Use the dot1x host-mode Interface Configuration mode command to allow a single
host (client) or multiple hosts on an IEEE 802.1X-authorized port. Use the no form of
this command to return to the default setting.
Syntax
{multi-host | single-host | multi-sessions}
dot1x host-mode
Parameters
•
multi-host—Enable multiple-hosts mode.
•
single-host—Enable single-hosts mode.
•
multi-sessions—Enable multiple-sessions mode.
Default Configuration
Default mode is multi-host.
Command Mode
Interface Configuration (Ethernet) mode
User Guidelines
In multiple hosts mode only one of the attached hosts must be successfully
authorized for all hosts to be granted network access. If the port becomes
unauthorized, all attached clients are denied access to the network.
In multiple sessions mode each host must be successfully authorized in order to
grant network access. Please note that packets are NOT encrypted, and after
success full authentication filtering is based on the source MAC address only.
Port security on a port cannot be enabled in single-host mode and in
multiple-sessions mode.
It is recommended to enable reauthentication when working in multiple-sessions
mode in order to detect user logout for users that have not logged off.
In single host mode there is only one attached host and only this authenticated
host can access the network.
Example
switchxxxxxx(config)# interface gi1
78-21075-01 Command Line Interface Reference Guide
802. 1 X Commands
Advertisement
Table of Contents
