When the authentication service is not available for authentication, the supplicant is moved to authentication service unavailable VLAN (Virtual LAN) and given restricted access.
To configure the authentication services unavailable VLAN, use the following commands:
configure netlogin authentication service-unavailable vlan
unconfigure netlogin authentication service-unavailable vlan
enable netlogin authentication service-unavailable vlan ports
disable netlogin authentication service-unavailable vlan ports
If a network login port has web enabled, authentication failure VLAN and authentication service unavailable VLAN configuration are not applicable to MAC and dot1x clients connected to that port. For example, if port 1:2 has network login MAC and web authentication enabled and authentication failure VLAN is configured and enabled on it, and if a MAC client connected to that port fails authentication, it is not moved to authentication failure VLAN.
Print
this page
Email this topic
Feedback
View PDF
Download EPUB