802.1x is an IEEE Standard for port-based access control. It provides an authentication mechanism to devices wishing to attach to a LAN.
AAA Configuration
aaa new-model
username myname password abc123
aaa authentication dot1x default group radius local
radius-server host 10.10.10.1 key xxyyef
dot1x system-auth-control
interface fastethernet 5/1
dot1x port-control auto
This configuration basically says:
1) anybody connecting to port 5/1 will be first authenticated by the radius server at 10.10.10.1
2) if this radius server does not respond (ie its down) then use the local user name and password
No comments:
Post a Comment