Tag: Dot1x

EXOS – 802.1x

18th January 2016 by Martin Flammia

Filed under Extreme Networks EXOS

Last modified 18th January 2016

With port authentication (802.1x ) you start by configuring the IP address of the radius server and the client IP which is the source address. In the example below Netlogin Vlan is being used to put all unauthenticated users into. Authenticated users are put into the Vlan that is returned by Radius via the various VSA’s. In the example below the following VSA will put …

EOS – 802.1x Configuration Example (C Series)

14th January 2016 by Martin Flammia

Filed under Extreme Networks EOS

Last modified 18th January 2016

Globally enable 802.1.x but don’t enforce port authentication

Enable port authentication

Disable port authentication

 

EOS – 802.1x Configuration Example (S/K Series)

14th January 2016 by Martin Flammia

Filed under Extreme Networks EOS

Last modified 18th January 2016

S/K Series Globally enable 802.1.x but don’t enforce port authentication

Enable port authentication (With auto-tracking disabled for use of anti-spoofing)

Disable port authentication (With auto-tracking enabled for use of anti-spoofing)

 

EOS – Authentication Behaviour

14th January 2016 by Martin Flammia

Filed under Extreme Networks EOS

Last modified 18th January 2016

All the command line referenced for configuring 802.1x can be programmed through Netsight Policy Manager, and is the recommended way to do this. For reference the authentication behaviours and their equivalent command line is detailed below: Authentication Behaviour                                     Active Unauthenticated Behaviour                                  Default Role <none> Disable 802.1x Authentication for the port           Checked

Authentication Behaviour        …

EOS – MultiAuth

14th January 2016 by Martin Flammia

Filed under Extreme Networks EOS

Last modified 18th January 2016

The following modes can be configured to enable 802.1x authentication: auto — Auto authorization mode (default). The Enterasys Matrix system will only forward frames received on a port which are considered authenticated according to the state of the corresponding access entity. forced‐auth — Forced authorized mode, which effectively disables 802.1X authentication on the port, and allows all frames received on the port to be forwarded. …