5.5.1 List of configuration commands
The following table lists the commands used to configure Layer 2 authentication.
|
Command name |
Description |
Applicable Layer 2 authentication types |
||
|---|---|---|---|---|
|
IEEE802.1X |
Web Authentication |
MAC-based Authentication |
||
|
authentication arp-relay |
Specify this command if you want the Switch to forward ARP packets from unauthenticated terminals to destinations outside the Switch. |
OK |
OK |
OK |
|
authentication auto-logout strayer |
Automatically deactivates authentication for terminals that have been moved outside the authentication port. |
- |
OK |
OK |
|
authentication force-authorized enable |
Enables forced authentication. |
- |
OK |
OK |
|
authentication force-authorized vlan |
Specifies the VLAN ID to be assigned to force-authorized users in dynamic VLAN mode. |
- |
OK |
OK |
|
authentication ip access-group |
If you want the switch to forward packets from unauthenticated terminals to destinations outside the Switch, use this command to specify which types of packets to forward by means of an IPv4 access list. |
OK |
OK |
OK |
|
authentication logout linkdown |
Suppresses deauthorization due to link down. |
OK |
OK |
OK |
|
authentication mac access-group |
If you want to forward packets from a terminal in the pre-authentication status to an external device on the Switch, specify the type of packets to be forwarded in MAC access list. |
OK |
OK |
OK |
|
authentication max-user (global) |
Specifies the maximum number of authenticated users permitted on the device. |
OK |
OK |
OK |
|
authentication max-user (interface) |
Specifies the maximum number of authenticated users permitted on each port. |
OK |
OK |
OK |
|
authentication radius-server dead-interval |
Specifies how long to wait before attempting to access the highest-priority RADIUS server again after it stops responding. |
- |
OK |
OK |
(Legend) OK: Can work-: Cannot work