Configure Fail Open I-SID

Before you begin

Configure a platform VLAN and associate the Fail Open I-SID.

About this task

Use this procedure to configure Fail Open I-SID. If the switch declares the RADIUS servers unreachable, then all new devices gain access into the configured Fail Open I-SID. 0 indicates that Fail Open I-SID is not enabled for this port.

Procedure

  1. Enter GigabitEthernet Interface Configuration mode:

    enable

    configure terminal

    interface GigabitEthernet {slot/port[/sub-port][-slot/port[/sub-port]][,...]}

    Note

    Note

    If the platform supports channelization and the port is channelized, you must also specify the sub-port in the format slot/port/sub-port.

  2. Configure Fail Open I-SID:

    eapol fail-open-isid <0-16000000>

Example

Configure the Fail Open I-SID.

Switch:1>enable
Switch:1#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Switch:1(config-if)#interface gigabitEthernet 1/10
Switch:1(config-if)#eapol fail-open-isid 1000

Variable Definitions

The following table defines parameters for the eapol fail-open-isid command.

Variable

Value

<0-16000000>

Specifies the Fail Open I-SID value.

0 indicates that Fail Open I-SID is not enabled for this port.