- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-09-2024 12:27 PM
Can someone please explain to me those commands ?
SW2(config-if)#authentication host-mode multi-auth
SW2(config-if)#authentication port-control auto
Troubleshoot Dot1x and Radius in IOS and IOS-XE
Configure Secure Client NAM for Dot1x Using Windows and ISE 3.2
Troubleshoot Wired Dot1x Issues in ISE 3.2 and Windows
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-09-2024 01:00 PM
Hello @Jason2005
These commands are used to configure authentication settings on a switch port. The command authentication host-mode multi-auth is used to enable multi-authentication mode on the interface, allowing multiple devices to authenticate independently through the same port. This is commonly used when multiple devices, such as a phone and a computer, share the same Ethernet port. The command authentication port-control auto configures the port control mode for authentication as "auto", meaning the switch dynamically determines whether to enforce authentication based on the attached device's capabilities. If the device supports authentication and sends a request, authentication is enabled for that device. If no authentication request is received, the port remains in an unauthenticated state, allowing non-authentication capable devices to connect without authentication. Together, these commands facilitate secure authentication on the switch port while accommodating devices with different authentication requirements.
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-09-2024 01:00 PM
Hello @Jason2005
These commands are used to configure authentication settings on a switch port. The command authentication host-mode multi-auth is used to enable multi-authentication mode on the interface, allowing multiple devices to authenticate independently through the same port. This is commonly used when multiple devices, such as a phone and a computer, share the same Ethernet port. The command authentication port-control auto configures the port control mode for authentication as "auto", meaning the switch dynamically determines whether to enforce authentication based on the attached device's capabilities. If the device supports authentication and sends a request, authentication is enabled for that device. If no authentication request is received, the port remains in an unauthenticated state, allowing non-authentication capable devices to connect without authentication. Together, these commands facilitate secure authentication on the switch port while accommodating devices with different authentication requirements.
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-09-2024 11:09 AM
Please I need a detailed explaination on for those commands, I did read sp many documentation but they weren't clear enough :
SW2(config)#interface Ethernet0/1
SW2(config-if)#description win10 node
SW2(config-if)#switchport access vlan 20
SW2(config-if)#switchport mode access
SW2(config-if)#authentication host-mode multi-auth
SW2(config-if)#authentication port-control auto
SW2(config-if)#mab
SW2(config-if)#dot1x pae authenticator
SW2(config-if)#dot1x timeout tx-period 10
SW2(config-if)#spanning-tree portfast edge
SW2(config-if)#authentication event fail action next-method
SW2(config-if)#authentication order dot1x mab

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-10-2024 01:03 PM
