Configuring the format of the RADIUS password attribute when authenticating NEAP MAC addresses using RADIUS

Use the following procedure to configure the format of the RADIUS password when authenticating NEAP MAC addresses using RADIUS.

Procedure

  1. Enter Global Configuration mode:

    enable

    configure terminal

  2. Configure the RADUIS password format:

    eapol multihost non-eap-pwd-fmt {[ip-addr] [key WORD<1-32>] [mac-addr] [padding] [port-number]}

Variable Definitions

The following table defines parameters for the eapol multihost non-eap-pwd-fmt command.

Variable

Value

ip-addr

Management ip-address of the switch.

key WORD<1-32>

Key value used for non-eap password format.

mac-addr

Mac-Address of the client.

padding

Includes a dot in the RADIUS password for every missing parameter.

port-number

Index of the port on which MAC is received.

Note

Note

To derive the port number for an interface, use the command show interfaces gigabit [{slot/port[/sub-port][-slot/port[/sub-port]][,...]}] .

If you configure interface 1/6 on the product, to derive the port-number for this interface, use the command show interfaces gigabitEthernet 1/6. From this command, you can ascertain that port number used in the NEAP password is 197.

Switch:1(config)# show interfaces gigabitEthernet 1/6

==========================================================================================
                                      Port Interface
==========================================================================================
PORT                            LINK  PORT           PHYSICAL          STATUS
NUM      INDEX DESCRIPTION      TRAP  LOCK     MTU   ADDRESS           ADMIN  OPERATE
------------------------------------------------------------------------------------------
1/6      197   1000BaseTX       true  false    1950  f8:15:47:e1:dd:05 up     up