Specifying an 802.1X client EAP authentication method
An 802.1X client-enabled device supports the following EAP authentication methods:
MD5-Challenge.
PEAP-MSCHAPv2.
PEAP-GTC.
TTLS-MSCHAPv2.
TTLS-GTC.
An 802.1X authenticator supports both the EAP relay and EAP termination modes. Support of the EAP authentication methods for the two modes varies.
The MD5-Challenge EAP authentication supports both modes.
Other EAP authentication methods support only the EAP relay mode.
For information about EAP relay and EAP termination, see "Configuring 802.1X."
To specify an 802.1X client EAP authentication method on an interface:
Step | Command | Remarks |
---|---|---|
1. Enter system view. | system-view | N/A |
2. Enter Ethernet interface view. | interface interface-type interface-number | N/A |
3. Specify an 802.1X client EAP authentication method. | dot1x supplicant eap-method { md5 | peap-gtc | peap-mschapv2 | ttls-gtc | ttls-mschapv2 } | By default, an 802.1X client-enabled interface uses the MD5-Challenge EAP authentication. Make sure the specified 802.1X client EAP authentication method is supported by the authentication server. |