Chapter 9 Wireless LAN Profiles
ZyWALL Series CLI Reference Guide
94
[no] mac-auth activate
MAC authentication has the AP use an external server to
authenticate wireless clients by their MAC addresses. Users
cannot get an IP address if the MAC authentication fails. The
no parameter turns it off.
RADIUS servers can require the MAC address in the wireless
client’s account (username/password) or Calling Station ID
RADIUS attribute.
mac-auth auth-method
auth_method
Sets the authentication method for MAC authentication.
mac-auth case account {upper |
lower}
Sets the case (upper or lower) the external server requires for
using MAC addresses as the account username and password.
For example, use mac-auth case account upper and mac-
auth delimiter account dash if you need to use a MAC
address formatted like 00-11-AC-01-A0-11 as the username and
password.
mac-auth case calling-station-
id {upper | lower}
Sets the case (upper or lower) the external server requires for
letters in MAC addresses in the Calling Station ID RADIUS
attribute.
mac-auth delimiter account
{colon | dash | none}
Specify the separator the external server uses for the two-
character pairs within MAC addresses used as the account
username and password.
For example, use mac-auth case account upper and mac-
auth delimiter account dash if you need to use a MAC
address formatted like 00-11-AC-01-A0-11 as the username and
password.
mac-auth delimiter calling-
station-id {colon | dash |
none}
Select the separator the external server uses for the pairs in
MAC addresses in the Calling Station ID RADIUS attribute.
mode {none | enhanced-open |
wep | wpa2 | wpa2-mix | wpa3}
Sets the security mode for this profile.
[no] reauth <30..30000>
Sets the interval (in seconds) between authentication requests.
The default is 0.
[no] server-acct <1..2>
activate
Enables user accounting through an external server. Use the no
parameter to disable.
server-acct <1..2> ip address
ipv4_address port <1..65535>
secret secret
Sets the IPv4 address, port number and shared secret of the
external accounting server.
no server-acct <1..2>
Clears the specified user accounting setting.
[no] server-auth <1..2>
activate
Activates server authentication for the account. The no
command deactivates authentication.
server-auth <1..2> ip address
ipv4_address port <1..65535>
secret secret
Sets the IPv4 address, port number and shared secret of the
RADIUS server to be used for authentication.
no server-auth <1..2>
Clears the server authentication setting.
[no] transition-mode
Enables backward compatibility when used with WPA3 or
Enhanced Open security mode. WPA3 falls back to WPA2,
while Enhanced Open falls back to open (none).
Table 25 Command Summary: Security Profile (continued)
COMMAND DESCRIPTION
To Next Page
Loading...
