12-48
Cisco IE 3000 Switch Software Configuration Guide
OL-13018-03
Chapter 12 Configuring IEEE 802.1x Port-Based Authentication
Configuring 802.1x Authentication
To disable 802.1x authentication with WoL, use the
no
authentication control-direction
or
no dot1x
control-direction
interface configuration command.
These examples show how to enable 802.1x authentication with WoL and set the port as bidirectional:
Switch(config-if)#
authentication control-direction both
or
Switch(config-if)#
dot1x control-direction both
Configuring MAC Authentication Bypass
Beginning in privileged EXEC mode, follow these steps to enable MAC authentication bypass. This
procedure is optional.
Step 3
authentication control-direction {both
| in}
or
dot1x control-direction
{
both
|
in
}
Enable 802.1x authentication with WoL on the port, and use these
keywords to configure the port as bidirectional or unidirectional.
•
both
—Sets the port as bidirectional. The port cannot receive packets
from or send packets to the host. By default, the port is bidirectional.
•
in
—Sets the port as unidirectional. The port can send packets to the
host but cannot receive packets from the host.
Step 4
end
Return to privileged EXEC mode.
Step 5
show authentication interface
interface-id
or
show dot1x interface
interface-id
Verify your entries.
Step 6
copy running-config startup-config
(Optional) Save your entries in the configuration file.
Command
Purpose
Command
Purpose
Step 1
configure terminal
Enter global configuration mode.
Step 2
interface
interface-id
Specify the port to be configured, and enter interface configuration mode.
For the supported port types, see the
“802.1x Authentication
Configuration Guidelines” section on page 12-28
.
Step 3
authentication port-control auto
or
dot1x port-control auto
Enable 802.1x authentication on the port.