configure netlogin authentication protocol-order

configure netlogin authentication protocol-order [[dot1x [web-based | mac | cep]] | [mac [dot1x | web-based | cep]] | [web-based [dot1x | mac | cep]] | [cep [dotlx | web-based | mac]]]

Description

Globally configures the order of the Network Login (NetLogin) port‘s authentication protocols.

Syntax Description

dot1x Configures the 802.1x authentication protocol preference.
mac Configures the MAC-based authentication protocol preference.
web-based Configures the web-based authentication protocol preference.
cep Configure Convergence End Point (CEP) authentication protocol preference. CEP only appears as an option if policy is enabled.

Default

By default, the protocol precedence order for a NetLogin-enabled port is:

Usage Guidelines

Web-based authentication occurs only when the port belongs to the NetLogin VLAN.

When you change the protocol precedence, the action for the current highest precedence protocol takes effect immediately if the client is authenticated by this protocol.

When you disable the highest precedence protocol on a port, the action for the next precedence protocol takes effect immediately if client is authenticated by this protocol.

CEP only appears as an option in the command if policy is enabled.

Example

The following example sets the protocol precedence order to Dot1x, Web-based, and MAC.

configure netlogin authentication protocol-order dot1x web-based mac cep

History

This command was first available in ExtremeXOS 15.7.1.

CEP option was added in ExtremeXOS 32.2.

Platform Availability

This command is available on ExtremeSwitching 5320, 5420, 5520, and 5720 series switches.