1. User message trigger Authentication
2. Switch launched 802.1X certification, terminal input user password for certification
3. When the server does not respond or the response fails, the switch initiates MAC authentication
configuration example
radius-server template controller_12.36
radius-server shared-key cipher %^%#}gu$V!77QTf_=E.XK49#cLg'Smo}T!v8mIBwkKz0%^%#
radius-server authentication 12.12.12.36 1812 weight 80
#
aaa
authentication-scheme radius
authentication-mode radius
domain radius
authentication-scheme radius
radius-server controller_12.36
#
#
mac-access-profile name mac_access_profile
#
dot1x-access-profile name dot1x_access_profile
#
authentication-profile name mac_dot1x
dot1x-access-profile dot1x_access_profile
mac-access-profile mac_access_profile
access-domain radius
authentication dot1x-mac-bypass
#
#
interface GigabitEthernet1/0/1
port link-type access
port default vlan 200
authentication-profile mac_dot1x
#