Web and MAC Authentication
Configuring Web Authentication
3-36
Syntax:
[no] aaa port-access web-based <port-list > [client-moves]
Allows client moves between the specified ports under
Web Auth control. When enabled, the switch allows
clients to move without requiring a re-authentication.
When disabled, the switch does not allow moves and
when one does occur, the user will be forced to re-
authenticate. At least two ports (from port(s) and to
port(s)) must be specified.
Use the no form of the command to disable client moves
between ports under Web Auth control.
(Default: disabled – no moves allowed)
Syntax:
aaa port-access web-based [dhcp-addr <ip-address/mask>]
Specifies the base address/mask for the temporary IP
pool used by DHCP. The base address can be any valid
ip address (not a multicast address). Valid mask range
value is <255.255.240.0 - 255.255.255.0>.
(Default: 192.168.0.0/255.255.255.0)
Syntax:
aaa port-access web-based [dhcp-lease <5 - 25>]
Specifies the lease length, in seconds, of the temporary
IP address issued for Web Auth login purposes.
(Default: 10 seconds)
Syntax:
aaa port-access web-based [ewa-server <ipv4-addr | hostname>
[<page-path>]]
Configures a connection with the web server at the
specified IPv4 address or host name on which custom
ized login web pages used for web authentication are
stored. (By default, the User Login screen shown in
Figure 3-1 is used for web authentication.)
The optional <page-path> parameter defines the direc
tory path on the server where all customized login web
pages (graphics, HTML frames, and HTML files) are
stored. (Default: The default <page-path> value is "/" for
root directory.)