AAA Commands 199

set service-profileauth-fallthru on page 308

show aaa on page 210

set authentication last-resort

Deprecated in WSS Software Version 5.0. The last-resortuser is not required or supported in WSS Software Version 5.0. Instead, a user who accesses the network on an SSID by using the fallthru access type last-resortis automatically a last-resortuser. The authorization attributes assigned to the user come from the default authorization attributes set on the SSID.

set authentication mac

Configures authentication and defines where it is performed for specified non-802.1X users with network access through a media access control (MAC) address.

Syntax set authentication mac {ssid ssid-namewired} mac-addr-wildcardmethod1 [method2] [method3] [method4]

ssid ssid-name

SSID name to which this authentication rule applies. To apply the rule to

 

all SSIDs, type any.

wired

Applies this authentication rule specifically to users connected to a wired

 

authentication port.

mac-addr-wildcard

A single user or set of users with access via a MAC address. Specify a

 

MAC address, or use the wildcard (*) character to specify a set of MAC

 

addresses. (For details, see “MAC Address Wildcards” on page 13.)

method1

At least one of up to four methods that WSS Software uses to handle

method2

authentication. Specify one or more of the following methods in priority

method3

order. WSS Software applies multiple methods in the order you enter

them.

method4

A method can be one of the following:

 

 

local—Uses the local database of usernames and user

 

groups on the WSS for authentication.

 

server-group-name—Uses the defined group of

 

RADIUS servers for authentication. You can enter up to

 

four names of existing RADIUS server groups as

 

methods.

 

For more information, see “Usage.”

Defaults By default, authentication is deactivated for all MAC users, which means MAC address authentication fails by default. When using RADIUS for authentication, the default well-known password for MAC and last-resort users is nortel.

Access Enabled.

Nortel WLAN—Security Switch 2300 Series Command Line Reference

Page 199
Image 199
Nortel Networks 2300 Series manual Set authentication last-resort, Set authentication mac, Wired