To display the MAC address table, use the following command:
show netlogin mac-list
When a client needs authentication the best match will be used to authenticate to the server.
MAC-based authentication is VR aware, so there is one MAC list per VR.
Assume we have a supplicant with MAC address 00:04:96:05:40:00, and the switch has the following table:
MAC Address/Mask Password (encrypted) Port(s) -------------------- ---------------------- -------------- 00:00:00:00:00:10/48 <not configured> 1:1-1:5 00:00:00:00:00:11/48 <not configured> 1:6-1:10 00:00:00:00:00:12/48 <not configured> any 00:01:30:70:0C:00/48 yaqu any 00:01:30:32:7D:00/48 ravdqsr any 00:04:96:00:00:00/24 <not configured> any
The user name used to authenticate against the RADIUS (Remote Authentication Dial In User Service) server would be “000496000000,” as this is the supplicant's MAC address with the configured mask applied. Although this is the default, ExtremeXOS 16.1 allows for a hyphenated mac address to be sent - configure netlogin mac username format hyphenated.
Note that the commands are VR aware, and therefore one MAC list table exists per VR.
Print
this page
Email this topic
Feedback
View PDF
Download EPUB