This command displays 802.1X client information. This command also displays information about the number of clients that are authenticated using Monitor mode and using 802.1X.
Format | show dot1x clients {unit/slot/port | all} |
Mode | Privileged EXEC |
Clients Authenticated using Monitor Mode | The number of the Dot1x clients authenticated using Monitor mode. |
Clients Authenticated using Dot1x | The number of Dot1x clients authenticated using 802.1x authentication process. |
Logical Interface | The logical port number associated with a client. |
Interface | The physical port to which the supplicant is associated. |
User Name | The user name used by the client to authenticate to the server. |
Supplicant MAC Address | The supplicant device MAC address. |
Session Time | The time since the supplicant is logged on. |
Filter ID | Identifies the Filter ID returned by the RADIUS (Remote Authentication Dial In User Service) server when the client was authenticated. This is a configured DiffServ policy name on the switch. |
VLAN ID | The VLAN assigned to the port. |
VLAN Assigned | The reason the VLAN identified in the VLAN ID field has been assigned to the port. Possible values are RADIUS, Unauthenticated VLAN, Monitor Mode, or Default. When the VLAN Assigned reason is Default, it means that the VLAN was assigned to the port because the P-VID of the port was that VLAN ID. |
Session Timeout | This value indicates the time for which the given session is valid. The time period in seconds is returned by the RADIUS server on authentication of the port. This value is valid for the port only when the port-control mode is not MAC-based. |
Session Termination Action | This value indicates the action to be taken once the session timeout expires. Possible values are Default and Radius-Request. If the value is Default, the session is terminated and client details are cleared. If the value is Radius-Request, then a reauthentication of the client is performed. |