aaa port-access authenticator eap-id-compliance

Syntax

aaa port-access authenticator eap-id-compliance
no aaa port-access authenticator eap-id-compliance

Description

This command enables EAP identifier compliance to support non-incremental EAP identifier values from RADIUS server, for a new EAP request . EAP Identifier compliance is disabled by default.

The no form of the command disables EAP identifier compliance to support non-incremental EAP identifier values from RADIUS server, for a new EAP request.

Command context

config

Examples

switch(config)#aaa port-access authenticator
 active                Activate/deactivate 802.1X authenticator.
 cached-reauth-delay   Set period of time, in seconds, during which
                       authenticator will not initiate reauthentications after
                       a cached reauthentication.
 eap-id-compliance	   Enable/disable EAP identifier compliance feature.
 [ethernet] PORT-LIST  Manage 802.1X on the device ports.
switch(config)#aaa port-access eap-id-compliance

switch(config)#show port-access authenticator 1/5
  Port Access Authenticator Status
  Port-access authenticator activated [No] : Yes
  Allow RADIUS-assigned dynamic (GVRP) VLANs [No] : No
  Use LLDP data to authenticate [No] : No
  Dot1X EAP Identifier Compliance [Disabled] : Enabled

        Auths/  Unauth  Untagged Tagged           % In  RADIUS Cntrl
  Port  Guests  Clients VLAN     VLANs  Port COS  Limit ACL    Dir   Port Mode
  ----- ------- ------- -------- ------ --------- ----- ------ ----- ----------
  1/5   0/0     0       22       No     No        No    No     both  1000FDx


switch(config)#show running config
Running configuration:

hostname "switch"
module 1 type j9728a
snmp-server community "public" unrestricted
aaa port-access authenticator 1-2
aaa port-access authenticator cached-reauth-delay 300
aaa port-access authenticator eap-id-compliance
aaa port-access authenticator active
oobm
   ip address dhcp-bootp
   exit
vlan 1
   name "DEFAULT_VLAN"
   untagged 1-48
   ip address dhcp-bootp
   exit