83
Examples
# Enable the authorization-fail-offline feature for service template service1.
<Sysname> system-view
[Sysname] wlan service-template service1
[Sysname-wlan-st-service1] client-security authorization-fail offline
client-security ignore-authorization
Use client-security ignore-authorization to configure the device to ignore the authorization
information received from the authentication server (a RADIUS server or the local device).
Use undo client-security ignore-authorization to restore the default.
Syntax
client-security ignore-authorization
undo client-security ignore-authorization
Default
The device uses the authorization information from the server.
Views
Service template view
Predefined user roles
network-admin
Usage guidelines
This command is configurable when the service template is disabled, and it takes effect after the
service template is enabled.
After a client passes RADIUS or local authentication, the server performs authorization based on the
authorization attributes configured for the user account. For example, the server can assign a VLAN.
If you do not want the device to use these authorization attributes for clients, configure this command
to ignore the authorization information from the server.
Examples
# Configure the device to ignore the authorization information from the authentication server for
service template service1.
<Sysname> system-view
[Sysname] wlan service-template service1
[Sysname-wlan-st-service1] client-security ignore-authorization
client-security intrusion-protection action
Use client-security intrusion-protection action to configure the intrusion protection action that the
device takes when intrusion protection detects illegal frames.
Use undo client-security intrusion-protection action to restore the default.
Syntax
client-security intrusion-protection action { service-stop | temporary-block |
temporary-service-stop }
undo client-security intrusion-protection action
To Next Page
Loading...
