Configuring 802.1X
This chapter describes how to configure IEEE 802.1X port-based authentication on Cisco NX-OS devices.
This chapter includes the following sections:
•
•
•
•
•
•
•
•
•
•
•
About 802.1X
802.1X defines a client-server based access control and authentication protocol that restricts unauthorized
clients from connecting to a LAN through publicly accessible ports. The authentication server authenticates
each client connected to a Cisco NX-OS device port.
Until the client is authenticated, 802.1X access control allows only Extensible Authentication Protocol over
LAN (EAPOL) traffic through the port to which the client is connected. After authentication is successful,
normal traffic can pass through the port.
Device Roles
With 802.1X port-based authentication, the devices in the network have specific roles.
About 802.1X, on page 177
Licensing Requirements for 802.1X, on page 183
Prerequisites for 802.1X, on page 183
802.1X Guidelines and Limitations, on page 183
Default Settings for 802.1X, on page 185
Configuring 802.1X, on page 186
Verifying the 802.1X Configuration, on page 205
802.1X Support for VXLAN EVPN, on page 205
Monitoring 802.1X, on page 210
Configuration Example for 802.1X, on page 210
Additional References for 802.1X, on page 211
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
9
C H A P T E R
177