Web and MAC Authentication

Configuring Web Authentication

Syntax: [no] aaa port-access web-based <port-list>

Enables web-based authentication on the specified ports. Use the no form of the command to disable web- based authentication on the specified ports.

Syntax: aaa port-access web-based <port-list> [auth-vid <vid>]] no aaa port-access web-based <port-list> [auth-vid]

Specifies the VLAN to use for an authorized client. The Radius server can override the value (accept-response includes a vid). If auth-vidis 0, no VLAN changes occur unless the RADIUS server supplies one.

Use the no form of the command to set the auth-vidto 0. (Default: 0).

Syntax: aaa port-access web-based [clear-statistics]

Clears (resets to 0) all counters used to monitor the CEI, HTTP, Web-Auth control traffic generated in web authentication session. (To display Web-Auth traffic statistics, enter the show port-accessweb-based statistics command.)

Syntax: aaa port-access web-based <port-list> [client-limit <1-32>]

Specifies the maximum number of authenticated clients to allow on the port. (Default: 1)

Note: On switches where Web Auth and 802.1X can operate concurrently, this limit includes the total number of clients authenticated through both methods.

Syntax: aaa port-access web-based [dhcp-addr <ip-address/mask>]

3-24