Filter
Top Products
180 CHAPTER 19: MAC AUTHENTICATION CONFIGURATION GUIDE
Configuration Procedure # Enable MAC authentication for port Ethernet 1/0/2.
<3Com> system-view
[3Com] mac-authentication interface Ethernet 1/0/2
# Specify the MAC authentication username type as MAC address and the MAC
address format as with-hyphen.
[3Com] mac-authentication authmode usernameasmacaddress usernameform
at with-hyphen
# Create a local user account.
■ Specify the username and password.
[3Com] local-user 00-0d-88-f6-44-c1
[3Com-luser-00-0d-88-f6-44-c1] password simple 00-0d-88-f6-44-c1
■ Set the service type to lan-access.
[3Com-luser-00-0d-88-f6-44-c1] service-type lan-access
[3Com-luser-00-0d-88-f6-44-c1] quit
# Create an ISP domain named aabbcc.net.
[3Com] domain aabbcc.net
New Domain added.
# Configure domain aabbcc.net to perform local authentication.
[3Com-isp-aabbcc.net] scheme local
[3Com-isp-aabbcc.net] quit
# Specify aabbcc.net as the ISP domain for MAC authentication.
[3Com] mac-authentication domain aabbcc.net
# Enable MAC authentication globally.
[3Com] mac-authentication
After configuring the above command, your MAC authentication configuration
will take effect immediately, and Only the user with the MAC address of
00-0d-88-f6-44-c1 is allowed to access the Internet through port Ethernet 1/0/2.
Note that enabling authentication globally is usually the last step in configuring
access control related features. Otherwise, valid users may be denied access to the
networks because of incomplete configuration.
Complete Configuration
#
domain default enable aabbcc.net
#
MAC-authentication
MAC-authentication domain aabbcc.net
MAC-authentication authmode usernameasmacaddress usernameformat wit
Switch 4210 Release V03.01.00 All versions
Product series Software version Hardware version