Is this possible? 2950 switch question

FloOzFloOz Member Posts: 1,614 ■■■■□□□□□□
in CCNP
I wasn't sure where to post this so I figured this would be the best place. Is it possible to have PC's that have not been authorized through 802.1X on my network be dumped into a specific vlan of my choosing automatically? I believe this is possible however my studies have not brought me to that advanced of a level yet. Thank you for any help! The switch I want to perform this on is a 2950
· Share on FacebookShare on Twitter

Comments

  • TheNewITGuyTheNewITGuy Member Posts: 169 ■■■■□□□□□□
    Sure is


    Switch# configure terminal

    Switch(config)# interface gigabitethernet3/1

    Switch(config-if)# switchport mode access

    Switch(config-if)# dot1x port-control auto

    Switch(config-if)# dot1x auth-fail vlan 40

    Switch(config-if)# dot1x auth-fail max-attempts 5

    Switch(config-if)# end

    Switch(config)# end

    Switch# show dot1x all

    Dot1x Info for interface GigabitEthernet3/1



    PortStatus = AUTHORIZED(AUTH-FAIL-VLAN)

    MaxReq = 2

    MaxAuthReq = 2

    HostMode = Single(AUTH-FAIL-VLAN)

    PortControl = Auto

    QuietPeriod = 60 Seconds

    Re-authentication = Disabled

    ReAuthPeriod = 3600 Seconds

    ServerTimeout = 30 Seconds

    SuppTimeout = 30 Seconds

    TxPeriod = 30 Seconds

    Guest-Vlan = 6

    Switch
    · Share on FacebookShare on Twitter
  • FloOzFloOz Member Posts: 1,614 ■■■■□□□□□□
    Thank you!!
    · Share on FacebookShare on Twitter
Sign In or Register to comment.