Enabling PEAP-MS-CHAP-V2 authentication
The following example illustrates how to enable local PEAP-MS-CHAP-V2 authentication for all 802.1X network
users. This example includes local usernames, passwords, and membership in a VLAN. This example includes one
username and an optional attribute for session-timeout in seconds.
1
To set authentication for all 802.1X users of SSID thiscorp, type the following command:
WSS# set authentication dot1x ssid thiscorp * peap-mschapv2 local
2
To add user Natasha to the local database on the WSS, type the following command:
WSS# set user Natasha password moon
3
To assign Natasha to a VLAN named red, type the following command:
WSS# set user Natasha attr vlan-name red
4
To assign Natasha a session timeout value of 1200 seconds, type the following command:
WSS# set user Natasha attr session-timeout 1200
5
Save the configuration:
WSS save config
success: configuration saved.
Nortel WLAN—Security Switch 2300 Series Configuration Guide
Configuring AAA for network users 557