HP 6125XLG R2306-HP 6125XLG Blade Switch Security Command Reference - Page 102

Usage guidelines The multicast trigger function enables the device to act as the initiator and periodically multicast Identify EAP-Request packets out of a port to detect 802.1X clients and trigger authentication. You can use the dot1x timer tx-period command to set the interval for sending multicast Identify EAP-Request packets. Examples # Enable the multicast trigger function on Ten-GigabitEthernet 1/1/6. system-view [Sysname] interface ten-gigabitethernet 1/1/6 [Sysname-Ten-GigabitEthernet1/1/6] dot1x multicast-trigger Related commands • display dot1x • dot1x timer tx-period • dot1x unicast-trigger dot1x port-control Use dot1x port-control to set the authorization state for the port. Use undo dot1x port-control to restore the default. Syntax dot1x port-control { authorized-force | auto | unauthorized-force } undo dot1x port-control Default The default port authorization state is auto. Views Ethernet interface view Predefined user roles network-admin Parameters authorized-force: Places the port in the authorized state, enabling users on the port to access the network without authentication. auto: Places the port initially in the unauthorized state to allow only EAPOL packets to pass, and after a user passes authentication, sets the port in the authorized state to allow access to the network. You can use this option in most scenarios. unauthorized-force: Places the port in the unauthorized state, denying any access requests from users on the port. Usage guidelines You can use this command to set the port authorization state to determine whether a client is granted access to the network. Examples # Set the authorization state of port Ten-GigabitEthernet 1/1/6 to unauthorized-force. 93