CLI Guide

Table Of Contents
Security Commands 924
When a client network device that supports 802.1x is connected to an
unauthorized port that is 802.1x enabled with no unauthenticated VLAN
configured and the client attempts and fails to authenticate, the port remains
in the unauthorized state and the client is not granted access to the network.
If an unauthenticated VLAN is configured for the port and the 802.1x client
fails to authenticate for the configured number of attempts, the port is placed
in the authorized state on the unauthenticated VLAN and the client is
granted access to the network.
Commands in this Section
This section explains the following commands:
aaa accounting authentication order show aaa statistics
aaa accounting delay-start authentication priority show accounting methods
aaa accounting update authentication timer restart show accounting update
aaa authentication dot1x
default
clear (IAS) show authentication
aaa authentication enable clear authentication
statistics
show authentication
authentication-history
aaa authentication login clear authentication
authentication-history
show authentication
methods
aaa authorization enable password show authentication
statistics
aaa authorization network
default radius
ip http authentication show authorization methods
aaa ias-user username ip https authentication show users accounts
aaa new-model password (AAA IAS User
Configuration)
show users login-history
aaa server radius dynamic-
author
password (User Exec) username
authentication enable show aaa ias-users username unlock