set multiauth precedence

Use this command to set the system‘s multiple authentication administrative precedence.

Syntax

Parameters

Defaults

From high to low precedence: quarantine-agent (S-, K-Series), dot1x, pwa, mac, cep, radius-snooping, auto-tracking (S-, K-Series).

Mode

All command modes.

Usage

When a user is successfully authenticated by more than one method at the same time, the precedence of the authentication methods will determine which RADIUS-returned filter ID will be processed and result in an applied traffic policy profile.

MultiAuth authentication precedence defaults to the following order from high to low on the S- and K-Series: quarantine-agent, 802.1x, PWA, MAC, CEP, radius-snooping, auto-tracking.

MultiAuth authentication precedence defaults to the following order from high to low on the 7100-Series: 802.1x, PWA, MAC, CEP, radius-snooping.

You may change the precedence for one or more methods by setting the authentication methods in the order of precedence from high to low. Any methods not entered are given a lower precedence than the methods entered in their pre-existing order. For instance (on the S-Series), if you start with the default order and only set quarantine-agent, PWA and MAC, the new precedence order will be quarantine-agent, PWA, MAC, 802.1x, CEP, and auto-tracking.