User Tools
technical:8021x
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| technical:8021x [2022/09/29 08:02] – jc | technical:8021x [2024/12/14 09:14] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ====== 802.1x ====== | ||
| < | < | ||
| - | # 802.1x | + | # Cisco IOS |
| - | ## Cisco | + | |
| __Server Profile__ | __Server Profile__ | ||
| ``` | ``` | ||
| + | username < | ||
| + | ! | ||
| radius server < | radius server < | ||
| | | ||
| + | | ||
| key <key> | key <key> | ||
| + | ! | ||
| aaa group server radius < | aaa group server radius < | ||
| | | ||
| ip radius source-interface < | ip radius source-interface < | ||
| - | ! | ||
| - | aaa server radius dynamic-author | ||
| - | | ||
| ! | ! | ||
| ip radius source-interface < | ip radius source-interface < | ||
| Line 20: | Line 20: | ||
| ``` | ``` | ||
| aaa new-model | aaa new-model | ||
| + | aaa session-id common | ||
| aaa authentication dot1x default group radius | aaa authentication dot1x default group radius | ||
| aaa accounting dot1x default start-stop group radius | aaa accounting dot1x default start-stop group radius | ||
| aaa accounting update newinfo | aaa accounting update newinfo | ||
| - | aaa session-id common | ||
| ``` | ``` | ||
| - | ### MAB | + | ## MAB |
| __Interface Configuration__ | __Interface Configuration__ | ||
| ``` | ``` | ||
| interface < | interface < | ||
| - | dot1x pae authenticator | + | switchport mode access |
| | | ||
| | | ||
| Line 36: | Line 36: | ||
| __Global Configuration__ | __Global Configuration__ | ||
| ``` | ``` | ||
| + | mab request format attribute 1 groupsize 2 separator : lowercase | ||
| + | authentication mac-move permit | ||
| dot1x system-auth-control | dot1x system-auth-control | ||
| ``` | ``` | ||
| - | ### Dynamic VLAN | + | ## CoA |
| + | ``` | ||
| + | aaa server radius dynamic-author | ||
| + | | ||
| + | ``` | ||
| + | ## Dynamic VLAN | ||
| __RADIUS Attributes__ | __RADIUS Attributes__ | ||
| ``` | ``` | ||
| radius-server attribute 6 on-for-login-auth | radius-server attribute 6 on-for-login-auth | ||
| - | radius-server attribute | + | radius-server attribute |
| - | radius-server attribute 25 access-request include | + | |
| ``` | ``` | ||
| - | ## EAP-TLS | + | # FreeRADIUS |
| - | ## FreeRADIUS | + | ## MAB |
| - | ### MAB | + | |
| __RADIUS Client Configuration__ | __RADIUS Client Configuration__ | ||
| Line 76: | Line 81: | ||
| - https:// | - https:// | ||
| - | ## Linux | + | # Linux |
| - | ### MAB | + | ## MAB |
| - | ### EAP-TLS | + | ## EAP-TLS |
| - | ## OpenVPN RADIUS Plugin | + | # OpenVPN RADIUS Plugin |
| - | ## Go RADIUS | + | # Go RADIUS |
| </ | </ | ||
technical/8021x.1664452952.txt.gz · Last modified: 2022/09/29 08:02 by jc