![]() ![]() ![]() The “172.120.39.46/24” is the range of RADIUS servers for authentication and it does not need to be in the same range of host devices (surely DSW1 must have a route to RADIUS servers 172.120.39.46/24). We only need to use one command to configure number ACL:ĭSW1(config)#access-list 10 permit 172.120.40.0 0.0.0.255 linux-microcore.img -m 128 2) Install wpasupplicant extension to Microcore tce-load -iw wpasupplicant. 1) Microcore - Dot1x Client installation a) Start Microcore Linux qemu. Notice that the word “auto” will force connected PC to authenticate through the 802.1x exchange.ĭSW1(config)# ip access-list standard 10 (syntax: ip access-list acl-name)ĭSW1(config-std-nacl)# permit 172.120.40.0 0.0.0.255 For this purpose I installed WPAsupplicant on to Linux Microcore Qemu image which is widely used by GNS3 community. Globally enable port-based authentication (802.1x) on a switch: This command causes the RADIUS server defined on the switch to be used for 802.1x authentication. ![]() The new-model keyword refers to the use of method lists, by which authentication methods and sources can be grouped or organized.ĭefine the server along with its secret shared password:ĪSW1(config)# radius-server host 172.120.39.46 key rad123ĪSW1(config)# aaa authentication dot1x default group radius
0 Comments
Leave a Reply. |