Configuring MAC-based authentication on a switch consists of:
MAC-Based Authentication Configuration describes how to configure MAC-based authentication. Unspecified parameters use their default values.
Step | Task | Command(s) |
---|---|---|
1 | Optionally set or clear a global password on the switch. | set macauthentication password password clear macauthentication password password |
2 | Set or clear the number of MAC authentication sessions supported on a port. | set macauthentication authallocated number port-string |
3 | Enable or disable MAC authentication on a port. By default, MAC authentication is disabled for all ports. MAC authentication must be enabled on the ports that will use it. | set macauthentication port {enable | disable} |
4 | Set the authentication mode for the credentials sent to the authentication server. | set macauthentication auth-mode {password | radius-username} |
5 | Enable or disable MAC authentication globally on the device. By default, MAC authentication is globally disabled on the device. | set macauthentication {enable | disable} |
6 | Set the MultiAuth mode. | set multiauth mode multi |
7 | Optionally, globally disable MAC-based authentication accounting. | set macauthentication accounting {enable | disable} |
8 | Display MAC authentication configuration or status of active sessions. | show macauthentication show macauthentication session |
9 | If a session or port requires reinitialization, reinitialize a specific MAC session or port. | set macauthentication macinitialize mac-address set macauthentication portinitialize port-string |
10 | If a session or port requires reauthentication, reauthenticate a specific MAC session or port. | set macauthentication macreauthenticate mac-address set macauthentication portreauthenticate port-string |