Exit

Cisco came up with a more flexible style of Dot1x port authentications in order to build more complex Methods specially for BYOD in mind. They took the concepts of policy-maps and classes in order to build these new rule sets.

So until now I’ve configured every dot1x port for authentication similiar to this example

When you now activate the new style – this might happen if you use aaa accounting – the switch will convert the old-style to the new notation (IBNS2.0). Afterwards you end up with something like the following (I’ve added some comments for better understanding).

This is really powerful and flexible – and very complex!

But if you only need it to keep it simple you might just use the following:

Here’s you can find the Command Reference for Identity-Based Networking Services on IOS-XE from Cisco: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ibns/command/ibns-xe-3se-3850-cr-book/ibns-cr-3850.html

Close
Go top