Simple 802.1x

802.1x is an IEEE Standard for port-based access control. It provides an authentication mechanism to devices wishing to attach to a LAN.

AAA Configuration

aaa new-model
username myname password abc123
aaa authentication dot1x default group radius local

radius-server host 10.10.10.1 key xxyyef

dot1x system-auth-control

interface fastethernet 5/1
     dot1x port-control auto

This configuration basically says:

1) anybody connecting to port 5/1 will be first authenticated by the radius server at 10.10.10.1
2) if this radius server does not respond (ie its down) then use the local user name and password

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s