The Properties page is used to globally enable port/device authentication. For authentication to function, it must be activated both globally and individually on each port.
To define port-based authentication, follow these steps:
Procedure
| Step 1 | Click Security > 802.1X > Properties. |
| Step 2 | Enter the parameters.
-
Port-Based Authentication—Enable or disable port-based authentication.
-
Guest VLAN—Select to enable the use of a guest VLAN for unauthorized ports. If a guest VLAN is enabled, all unauthorized ports automatically join the VLAN selected in the Guest VLAN ID field. If a port is later authorized, it’s removed from the guest VLAN.
The guest VLAN can be defined as a layer 3 interface (assigned an IP address) like any other VLAN. However, device management isn’t available via the guest VLAN IP address.
-
Guest VLAN ID—Select the guest VLAN from the list of VLANs.
|
| Step 3 | Click Apply. The 802.1X properties are written to the Running Configuration file. |