Filter
Top Products
xStack
®
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual
740
106
WEB-BASED ACCESS CONTROL (WAC) COMMANDS
WAC is “Web-based Access Control”. Web-Based Authentication Login is a feature designed to authenticate a user when
the user is trying to access the Internet via the Switch.
The authentication process uses HTTP protocol. The switch enters the authenticating stage when users would like to
browse web screen (ex: http://www.kimo.com.tw) through the web browser (ex: IE…). When the switch detects HTTP
packets and this port or this host (host-based mode) is un-authenticated, the switch will pop out username/password
screen to query users. The user can’t access internet until he passes the authentication process.
The switch can be the authentication server itself and do the authentication based on a local database or be a RADIUS
client and perform the authentication process via RADIUS protocol with remote RADIUS server.
The client user initiates the authentication process of WAC via a Web access.
The Web-based Access Control (WAC) commands in the Command Line Interface (CLI) are listed (along with the
appropriate parameters) in the following table.
Command Parameters
enable wac
disable wac
config wac ports [<portlist> | all] {state [enable | disable] | aging_time [infinite | <min 1-1440>] |
idle_time [infinite | <min 1-1440>] | block_time [<sec 0-300>]}(1)
config wac method [local | radius]
config wac default_redirpath <string 128>
config wac clear_default_redirpath
config wac virtual_ip { < ipaddr > | < ipv6addr > } (1)
config wac switch_http_port < tcp_port_number 1-65535> { [ http | https ] }
create wac user <username 15> {[vlan <vlan_name 32> | vlanid <vlanid 1-4094>]}
delete wac [user <username 15> | all_users]
config wac user <username 15> [vlan <vlan_name 32> | vlanid <vlanid 1-4094> | clear_vlan]
config wac authorization attributes {radius [enable| disable] | local [enable | disable]}(1)
show wac
show wac ports { <portlist> }
show wac user
show wac auth_state ports { <portlist> }
clear wac auth_state [ports [ <portlist> | all ] { authenticated | authenticating | blocked } | macaddr
<macaddr>]
Each command is listed, in detail, in the following sections.
enable wac
Purpose Used to enable WAC function.
Syntax
enable wac