Configuring MAC Authentication
Enterasys C3 Configuration Guide 32-29
Configuring MAC Authentication
Purpose
To review, disable, enable and configure MAC authentication. This authentication method allows
the device to authenticate source MAC addresses in an exchange with an authentication server.
The authenticator (switch) selects a source MAC seen on a MAC-authentication enabled port and
submits it to a backend client for authentication. The backend client uses the MAC address stored
password, if required, as credentials for an authentication attempt. If accepted, a string
representing an access policy and/or VLAN authorization may be returned. If present, the switch
applies the associated policy rules and VLAN segmentation.
You can specify a mask to apply to MAC addresses when authenticating users through a RADIUS
server (see “set macauthentication significant-bits” on page 32-39). The most common use of
significant bit masks is for authentication of all MAC addresses for a specific vendor.
Commands
show macauthentication
Use this command to display MAC authentication information for one or more ports.
Syntax
show macauthentication [port-string]
For information about... Refer to page...
show macauthentication 32-29
show macauthentication session 32-31
set macauthentication 32-32
set macauthentication password 32-32
clear macauthentication password 32-33
set macauthentication port 32-33
set macauthentication portinitialize 32-34
set macauthentication portquietperiod 32-34
clear macauthentication portquietperiod 32-35
set macauthentication macinitialize 32-35
set macauthentication reauthentication 32-36
set macauthentication portreauthenticate 32-36
set macauthentication macreauthenticate 32-37
set macauthentication reauthperiod 32-37
clear macauthentication reauthperiod 32-38
set macauthentication significant-bits 32-39
clear macauthentication significant-bits 32-39
To Next Page
Loading...
Need help?
General