The Layer 2 access control solution provides secure network access control using an identity-based network solution. Cisco IBNS is a technology solution that expands network access security by using the 802.1x technology and EAP applying policy enforcement at the port level. This chapter covered details of how Cisco IBNS integrates into the network to offer cost-effective user management, with flexibility, mobility, and reduced operating costs.
The chapter outlined the IBNS and 802.1x framework and an integrated system based on technology standards that provide identity-based network access control, down to the user at the port level at Layer 2.
The chapter illustrated how the 802.1x technology works and provided comprehensive details on the components of the 802.1x solution. The chapter also provided details of various deployment scenarios in wired and wireless LAN implementations.
The chapter briefly explained the various types of EAP methods that support the 802.1x implementation. More details on various EAP types will be covered in Chapter 12.
The chapter concluded with an explanation of how to implement 802.1x technology. This explanation was supported by sample configuration examples on how to enable the 802.1x solution on Cisco Catalyst switches and Cisco Aironet Wireless LAN Access Point. The section also provided sample show and debug command outputs from the authenticator (switch and AP) to verify the configurations.