Cisco WS-C4003 Software Guide - Page 396
Manually Reauthenticating the Supplicant, Enabling Multiple Hosts, mod/port
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 396 highlights
Configuring Authentication Chapter 27 Configuring Switch Access Using AAA Manually Reauthenticating the Supplicant You can manually reauthenticate the supplicant connected to a specific port at any time. When you want to configure automatic 802.1x supplicant reauthentication, see the "Setting and Enabling Automatic Reauthentication of the Supplicant" section on page 27-41. To manually reauthenticate a supplicant connected to a specific port, perform this task in privileged mode: Task Command Manually authenticate the supplicant connected to set port dot1x mod/port re-authenticate a specific port. This example shows how to manually reauthenticate the supplicant connected to port 1 on module 4: Console> (enable) set port dot1x 4/1 re-authenticate Port 4/1 re-authenticating... dot1x re-authentication successful... dot1x port 4/1 authorized. Enabling Multiple Hosts You can enable a specific port to allow multiple-user access. When a port is enabled for multiple users, and a supplicant connected to that port is authorized successfully, any host (with any MAC address) is allowed to send and receive traffic on that port. If you then connect multiple supplicants to that port through a hub, you can reduce the security level on that port. To enable multiple-user access on a specific port, perform this task in privileged mode: Task Enable multiple hosts on a specific port. Command set port dot1x mod/port multiple-host enable This example shows how to enable access for multiple hosts on port 1 on module 4: Console> (enable) set port dot1x 4/1 multiple-host enable Port 4/1 multiple hosts allowed. Disabling Multiple Hosts You can disable multiple-user access on any port where it is enabled. To disable multiple-user access on a specific port, perform this task in privileged mode: Task Disable multiple hosts on a specific port. Command set port dot1x mod/port multiple-host disable This example shows how to disable access for multiple hosts on port 1 on module 4: Console> (enable) set port dot1x 4/1 multiple-host disable Port 4/1 multiple hosts not allowed. 27-42 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02