Cisco Mac Authentication Bypass: Unterschied zwischen den Versionen

Aus Xinux Wiki
Zur Navigation springen Zur Suche springen
Zeile 10: Zeile 10:
 
*config terminal
 
*config terminal
 
*interface GigabitEthernet1/0/24
 
*interface GigabitEthernet1/0/24
 +
*switchport access vlan 1
 
*switchport mode access
 
*switchport mode access
 
*authentication port-control auto
 
*authentication port-control auto
 +
*mab
 
*spanning-tree portfast
 
*spanning-tree portfast
*authentication host-mode single-host
+
*spanning-tree bpduguard enable
*mab
+
 
*authentication order mab
 
 
=Links=
 
=Links=
 
*http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/identity-based-networking-services/config_guide_c17-663759.html
 
*http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/identity-based-networking-services/config_guide_c17-663759.html

Version vom 25. April 2016, 10:36 Uhr

Radiusanbindung

Allgemeine Konfiguration

  • aaa new-model
  • aaa authentication dot1x default group radius
  • Üaaa authorization network default group radius
  • aaa accounting dot1x default start-stop group radius

Interface

  • config terminal
  • interface GigabitEthernet1/0/24
  • switchport access vlan 1
  • switchport mode access
  • authentication port-control auto
  • mab
  • spanning-tree portfast
  • spanning-tree bpduguard enable

Links

Abgerufen von „http://wiki.ixheim.de/index.php?title=Cisco_Mac_Authentication_Bypass&oldid=8986