3-19
Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches
Configuring Web Authentication
Syntax: [no] aaa port-access web-based [e] < port-list>
Enables web-based authentication on the specified
ports. Use the no form of the command to disable web-
based authentication on the specified ports.
Syntax: aaa port-access web-based [e] < port-list> [auth-vid <vid>]]
no aaa port-access web-based [e] < port-list> [auth-vid]
Specifies the VLAN to use for an authorized client. The
Radius server can override the value (accept-response
includes a vid). If auth-vid is 0, no VLAN changes occur
unless the RADIUS server supplies one.
Use the no form of the command to set the auth-vid to 0.
(Default: 0).
Syntax: aaa port-access web-based [e] < port-list > [client-limit <1-32>]
Specifies the maximum number of authenticated
clients to allow on the port. (Default: 1)
Syntax: [no] aaa port-access web-based [e] < port-list > [client-moves]
Allows client moves between the specified ports under
Web Auth control. When enabled, the switch allows
clients to move without requiring a re-authentication.
When disabled, the switch does not allow moves and
when one does occur, the user will be forced to re-
authenticate. At least two ports (from port(s) and to
port(s)) must be specified.
Use the no form of the command to disable client moves
between ports under Web Auth control.
(Default: disabled – no moves allowed)