生まれ変わる - umarekawaru

User Tools

Site Tools

Trace:
technical:8021x

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
technical:8021x [2022/09/29 08:06] jctechnical:8021x [2024/12/14 09:14] (current) – external edit 127.0.0.1
Line 1: Line 1:
 +====== 802.1x ======
 <markdown> <markdown>
-# 802.1x +# Cisco IOS
-## Cisco+
 __Server Profile__ __Server Profile__
 ``` ```
-username <user> password <password>+username <radius-user> password <password>
 ! !
 radius server <server> radius server <server>
  address ipv4 <ip> auth-port 1812 acct-port 1813  address ipv4 <ip> auth-port 1812 acct-port 1813
- automate-tester username <user> ignore-acct-port+ automate-tester username <radius-user> ignore-acct-port
  key <key>  key <key>
 ! !
Line 14: Line 14:
  server name <server>  server name <server>
  ip radius source-interface <interface>  ip radius source-interface <interface>
-! 
-aaa server radius dynamic-author 
- client <ip> server-key <key> 
 ! !
 ip radius source-interface <interface> ip radius source-interface <interface>
Line 23: Line 20:
 ``` ```
 aaa new-model aaa new-model
 +aaa session-id common
 aaa authentication dot1x default group radius aaa authentication dot1x default group radius
 aaa accounting dot1x default start-stop group radius aaa accounting dot1x default start-stop group radius
 aaa accounting update newinfo aaa accounting update newinfo
-aaa server radius dynamic-author 
-aaa session-id common 
 ``` ```
-### MAB+## MAB
 __Interface Configuration__ __Interface Configuration__
 ``` ```
 interface <interface> interface <interface>
- dot1x pae authenticator+ switchport mode access
  authentication periodic  authentication periodic
  authentication port-control auto  authentication port-control auto
Line 40: Line 36:
 __Global Configuration__ __Global Configuration__
 ``` ```
 +mab request format attribute 1 groupsize 2 separator : lowercase
 +authentication mac-move permit
 dot1x system-auth-control dot1x system-auth-control
 ``` ```
-### Dynamic VLAN+## CoA 
 +``` 
 +aaa server radius dynamic-author 
 + client <ip> server-key <key> 
 +``` 
 +## Dynamic VLAN
 __RADIUS Attributes__ __RADIUS Attributes__
 ``` ```
 radius-server attribute 6 on-for-login-auth radius-server attribute 6 on-for-login-auth
-radius-server attribute include-in-access-req +radius-server attribute 32 include-in-access-req 
-radius-server attribute 25 access-request include+
 ``` ```
-## EAP-TLS +# FreeRADIUS 
-## FreeRADIUS +## MAB
-### MAB+
 __RADIUS Client Configuration__ __RADIUS Client Configuration__
  
Line 80: Line 81:
 - https://wiki.alpinelinux.org/wiki/FreeRadius_EAP-TLS_configuration - https://wiki.alpinelinux.org/wiki/FreeRadius_EAP-TLS_configuration
  
-## Linux +# Linux 
-### MAB +## MAB 
-### EAP-TLS +## EAP-TLS 
-## OpenVPN RADIUS Plugin +# OpenVPN RADIUS Plugin 
-## Go RADIUS+# Go RADIUS
  
 </markdown> </markdown>
  
technical/8021x.1664453190.txt.gz · Last modified: 2022/09/29 08:06 by jc

Page Tools