Why to use dot1x authentication ? dot1x authentication can be used to secure access to the network.
•enable “aaa” on the switch “ aaa new-model”
•enable “aaa” on the switch “ aaa new-model”
•Define external
radius-servers:
–Radius-server
host hostname | ip-address} key string
•Define the
authentication method for 802.1x
–Aaa authentication dot1x
default group radius
•Enable 802.1x
globally “dot1x system-auth-control”
•Configure each switchport that uses 802.1x
–Switch(config-if)#dot1x
port-control {force-authorized | force-unauthorized | auto}
•Force-authorized:
the port always authorize any connected client (default state)
•Force-unauthorized:
the port is forced to never authorize any connected client (client need to
disconnect/reconnect)
•Auto:
the port uses 802.1x exchange to move from unauthorized to the authorized state
•Allow multiple hosts
on a switchport
–Dot1x
host-mode multi-host
•“show dot1x all”
If you are looking to find a job remotely, apply here:
https://www.security-architecture.com/add-cv/
If you are looking to find a job remotely, apply here:
https://www.security-architecture.com/add-cv/
No comments:
Post a Comment