Dell PowerConnect M6220 Configuration Guide - Page 87

Global values Timeout : 3 Retransmit : 3 Deadtime : 0 Source-ip : 0.0.0.0 console(config)#aaa authentication login radiusList radius console(config)#aaa authentication dot1x default radius console(config)#dot1x system-auth-control console(config)#interface ethernet 1/g1 console(config-if-1/g1)#dot1x port-control force-authorized console(config-if-1/g1)#exit Example #2: MAC-Based Authentication Mode Beginning in release 2.1, the PowerConnect 6200 Series switches support MAC-based 801.X authentication. This feature allows multiple hosts to authenticate on a single port. The hosts are distinguished by their MAC addresses. When multiple hosts (for example, a PC, a printer, and a phone in the same office) are connected to the switch on the same port, each of the connected hosts authenticates separately with the RADIUS server. The following command enables MAC-based authentication on port 1/g8 and limits the number of devices that can authenticate on that port to 3. The switchport mode general command sets the port to an 802.1Q VLAN. The port must be in general mode in order to enable MAC-based 802.1X authentication. console#configure console(config)#interface ethernet 1/g8 console(config-if-1/g8)#switchport mode general console(config-if-1/g8)#dot1x port-control mac-based console(config-if-1/g8)#dot1x max-users 3 console(config-if-1/g8)#exit console(config)#exit console#show dot1x ethernet 1/g8 Administrative Mode Enabled Port ------1/g8 Admin Mode mac-based Oper Mode -----------Unauthorized Reauth Control -------FALSE Reauth Period ---------3600 Quiet Period 60 Transmit Period 30 Device Security 87