Thursday, 23 February 2012

Simple 802.1x

802.1x is an IEEE Standard for port-based access control. It provides an authentication mechanism to devices wishing to attach to a LAN.

AAA Configuration

aaa new-model
username myname password abc123
aaa authentication dot1x default group radius local

radius-server host key xxyyef

dot1x system-auth-control

interface fastethernet 5/1
     dot1x port-control auto

This configuration basically says:

1) anybody connecting to port 5/1 will be first authenticated by the radius server at
2) if this radius server does not respond (ie its down) then use the local user name and password

No comments:

Post a Comment