Dell PowerConnect M6348 Configuration Guide - Page 105

Example 2: Show MAB Configuration To show the MAB configuration for interface 1/5, use the following command: console#show dot1x ethernet 1/g5 Administrative Mode Enabled Port ------1/g5 Admin Mode mac-based Oper Mode -----------Authorized Reauth Control -------TRUE Reauth Period ---------300 Quiet Period 60 Transmit Period 30 Maximum Requests 2 Max Users 16 Supplicant Timeout 30 Server Timeout (secs 30 MAB mode (configured Enabled MAB mode (operational Enabled Logical Port ------64 Supplicant MAC-Address 0012.43D1.D19F AuthPAE State -----------Authenticated Backend State ----------- Idle VLAN Username Filter Id Id 1 Authentication Server Filter Assignment The PowerConnect M6220/M6348/M8024 switches allow the external 802.1X Authenticator or RADIUS server to assign DiffServ policies to users that authenticate to the switch. When a host (supplicant) attempts to connect to the network through a port, the switch contacts the 802.1X authenticator or RADIUS server, which then provides information to the switch about which DiffServ policy to assign the host (supplicant). The application of the policy is applied to the host after the authentication process has completed. To enable filter assignment by an external server, the following conditions must be true: 1 The port that the host is connected to must be enabled for MAC-based port access control by using the following command in Interface Config mode: dot1x port-control mac-based 2 The RADIUS or 802.1X server must specify the policy to assign. For example, if the DiffServ policy to assign is named internet_access, include the following attribute in the RADIUS or 802.1X server configuration: Device Security 105