configure netlogin authentication protocol-order
Description
Globally configures the order of the Network Login (NetLogin) port‘s authentication protocols.
Syntax Description
dot1x | Configures the 802.1x authentication protocol preference. |
mac | Configures the MAC-based authentication protocol preference. |
web-based | Configures the web-based authentication protocol preference. |
cep | Configure Convergence End Point (CEP) authentication protocol preference. CEP only appears as an option if policy is enabled. |
Default
By default, the protocol precedence order for a NetLogin-enabled port is:
- Dot1x
- Web-based
- MAC
- CEP
Usage Guidelines
Web-based authentication occurs only when the port belongs to the NetLogin VLAN.
When you change the protocol precedence, the action for the current highest precedence protocol takes effect immediately if the client is authenticated by this protocol.
When you disable the highest precedence protocol on a port, the action for the next precedence protocol takes effect immediately if client is authenticated by this protocol.
CEP only appears as an option in the command if policy is enabled.
Example
The following example sets the protocol precedence order to Dot1x, Web-based, and MAC.
configure netlogin authentication protocol-order dot1x web-based mac cep
History
This command was first available in ExtremeXOS 15.7.1.
CEP option was added in ExtremeXOS 32.2.
Platform Availability
This command is available on ExtremeSwitching X435, X440-G2, X450-G2, X460-G2, X465, X590, X620, and X695 series switches.