To authenticate a user, the first authentication method in the user's login (authentication login list) is attempted. Unified
Switch software does not utilize multiple entries in the user's login. If the first entry returns a timeout, the user authentication
attempt fails.
Note: The default login list included with the default configuration can not be changed.
Format
authentication login <listname> [<method1> [<method2> [<method3>]]]
Mode
Global Config
no authentication login
This command deletes the specified authentication login list. The attempt to delete fails if any of the following conditions are
true:
•
The login list name is invalid or does not match an existing authentication login list
•
The specified authentication login list is assigned to any user or to the non configured user for any component
•
The login list is the default login list included with the default configuration and was not created using authentication
login. The default login list cannot be deleted.
Format
no authentication login <listname>
Mode
Global Config
clear dot1x statistics
This command resets the 802.1x statistics for the specified port or for all ports.
Format
clear dot1x statistics {<slot/port> | all}
Mode
Privileged EXEC
clear radius statistics
This command is used to clear all RADIUS statistics.
Format
clear radius statistics
Mode
Privileged EXEC
dot1x default-login
This command assigns the authentication login list to use for non-configured users for 802.1x port security. This setting is
over-ridden by the authentication login list assigned to a specific user if the user is configured locally. If this value is not
configured, users will be authenticated using local authentication only.
Format
dot1x default-login <listname>
Mode
Global Config
Port-Based Network Access Control Commands
55