HP 6120XG HP ProCurve Series 6120 Blade Switches Access Security Guide - Page 138
auth-vid
View all HP 6120XG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 138 highlights
Web and MAC Authentication Configuring MAC Authentication on the Switch Syntax: [no] aaa port-access mac-based [e] < port-list > [addr-moves] Allows client moves between the specified ports under MAC Auth control. When enabled, the switch allows addresses to move without requiring a re-authentica tion. When disabled, the switch does not allow moves and when one does occur, the user will be forced to reauthenticate. At least two ports (from port(s) and to port(s)) must be specified. Use the no form of the command to disable MAC address moves between ports under MAC Auth control. (Default: disabled - no moves allowed) Syntax: aaa port-access mac-based [e] < port-list > [auth-vid ] no aaa port-access mac-based [e] < port-list > [auth-vid] Specifies the VLAN to use for an authorized client. The Radius server can override the value (accept-response includes a vid). If auth-vid is 0, no VLAN changes occur unless the RADIUS server supplies one. Use the no form of the command to set the auth-vid to 0.(Default: 0). Syntax: aaa port-access mac-based [e] < port-list > [logoff-period] ] Specifies the period, in seconds, that the switch enforces for an implicit logoff. This parameter is equivalent to the MAC age interval in a traditional switch sense. If the switch does not see activity after a logoff-period interval, the client is returned to its preauthentication state. (Default: 300 seconds) Syntax: aaa port-access mac-based [e] < port-list > [max-requests ] Specifies the number of authentication attempts that must time-out before authentication fails. (Default: 2) Syntax: aaa port-access mac-based [e] < port-list > [quiet-period ] Specifies the time period (in seconds) that the switch waits before processing an authentication request from a MAC address that failed authentication. (Default: 60 seconds) 3-54