– 171 –
21 MAC ADDRESS AUTHENTICATION
COMMANDS
Use these commands to define MAC authentication on the access point. For
local MAC authentication, first define the default filtering policy using the
address filter default command. Then enter the MAC addresses to be
filtered, indicating if they are allowed or denied. For RADIUS MAC
authentication, the MAC addresses and filtering policy must be configured
on the RADIUS server.
address filter
default
This command sets filtering to allow or deny listed MAC addresses.
SYNTAX
address filter default <allowed | denied>
allowed - Only MAC addresses entered as “denied” in the address
filtering table are denied.
denied - Only MAC addresses entered as “allowed” in the address
filtering table are allowed.
DEFAULT
Allowed
COMMAND MODE
Global Configuration
EXAMPLE
AP(config)#address filter default denied
AP(config)#
Table 18: MAC Address Authentication
Command Function Mode Page
address filter default Sets filtering to allow or deny listed addresses GC 171
address filter entry Enters a MAC address in the filter table GC 172
address filter delete Removes a MAC address from the filter table GC 172
mac- authentication
server
Sets address filtering to be performed with local
or remote options
GC 173
mac- authentication
session-timeout
Sets the interval at which associated clients will
be re-authenticated with the RADIUS server
authentication database
GC 173
show authentication Shows all authentication settings, as well as the
address filter table
Exec 174
To Next Page
Loading...
Need help?
General
