Command or Action
Step 5
switchport mode access
Example:
Switch(config-if)# switchport mode access
Step 6
authentication violation {shutdown | restrict
| protect | replace}
Example:
Switch(config-if)# authentication
violation restrict
Step 7
end
Example:
Switch(config-if)# end
Configuring 802.1x Authentication
To allow per-user ACLs or VLAN assignment, you must enable AAA authorization to configure the switch
for all network-related service requests.
This is the 802.1x AAA process:
Before You Begin
To configure 802.1x port-based authentication, you must enable authentication, authorization, and accounting
(AAA) and specify the authentication method list. A method list describes the sequence and authentication
method to be queried to authenticate a user.
Purpose
Sets the port to access mode.
Configures the violation mode. The keywords have these meanings:
Returns to privileged EXEC mode.
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
How to Configure 802.1x Port-Based Authentication
• shutdown–Error disable the port.
• restrict–Generate a syslog error.
• protect–Drop packets from any new device that sends traffic
to the port.
• replace–Removes the current session and authenticates with
the new host.
1361