Using SNMP to configure 802.1X Port-Based Access Control

  1. Use the agentRadiusServerStatus in the agentRadiusServerConfigTable under the FASTPATH-RADIUS-AUTH-CLIENT-MIB to create a new RADIUS (Remote Authentication Dial In User Service) server entry.
  2. Use the agentRadiusServerAddress object to configure the RADIUS authentication server IP address as 10.10.10.10.
  3. Use the agentRadiusServerSecret object to configure the RADIUS authentication server secret.
  4. Use the agentRadiusAccountingStatus object in the agentRadiusAccountingConfigTable to create a RADIUS accounting server.
  5. User the agentRadiusAccountingServerAddress object to configure the RADIUS accounting server IP address. as 10.10.10.10.
  6. Use the agentRadiusAccountingSecret object to configure the RADIUS accounting server secret.
  7. Use the agentRadiusAccountingStatus object to enable RADIUS accounting mode.
  8. Use the agentUserConfigDefaultAuthenticationList object in agentAuthenticationGroup in the FASTPATH-SWITCHING module to set RADIUS as the default login list for dot1x.
  9. To enable 802.1X authentication on the switch, set the dot1xPaeSystemAuthControl object in the IEEE8021-PAE-MIB module to enable (1).
    Click to expand in new window
    GUID-27A05139-75C7-445F-9860-25418F751F8E-low.jpg
  10. To set the 802.1X mode for port 1/0/1 to Force Authorized, use theagentDot1xPortControlMode object in the agentDot1xPortConfigTable, which is in FASTPATH-DOT1X-ADVANCED-FEATURES-MIB.