Configuring The Authentication Cache And Profile - Cisco M10-RM Software Manual

Cisco ios releases 12.4(10b)ja and 12.3(8)jec
Hide thumbs Also See for M10-RM:
Table of Contents

Advertisement

Configuring the Authentication Cache and Profile

To disable AAA, use the no aaa new-model global configuration command. To disable authorization,
use the no aaa authorization {network | exec} method1 global configuration command.
Configuring the Authentication Cache and Profile
The authentication cache and profile feature allows the access point to cache the
authentication/authorization responses for a user so that subsequent authentication/authorization
requests do not need to be sent to the AAA server.
On the access point, this feature is only supported for Admin authentication.
Note
The following commands that support this feature are included in Cisco IOS Release 12.3(7):
cache expiry
cache authorization profile
cache authentication profile
aaa cache profile
See the Cisco IOS Command Reference for Cisco Aironet Access Points and Bridges, 12.3(7)JA for
Note
information about these commands.
The following is a configuration example from an access point configured for Admin authentication
using TACACS+ with the auth cache enabled. While this example is based on a TACACS server, the
access point could be configured for Admin authentication using RADIUS:
version 12.3
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname ap
!
!
username Cisco password 7 123A0C041104
username admin privilege 15 password 7 01030717481C091D25
ip subnet-zero
!
!
aaa new-model
!
!
aaa group server radius rad_eap
server 192.168.134.229 auth-port 1645 acct-port 1646
!
aaa group server radius rad_mac
server 192.168.134.229 auth-port 1645 acct-port 1646
!
aaa group server radius rad_acct
server 192.168.134.229 auth-port 1645 acct-port 1646
!
aaa group server radius rad_admin
server 192.168.134.229 auth-port 1645 acct-port 1646
cache expiry 1
cache authorization profile admin_cache
cache authentication profile admin_cache
Cisco IOS Software Configuration Guide for Cisco Aironet Access Points
5-20
Chapter 5
Administering the Access PointWireless Device Access
OL-14209-01

Hide quick links:

Advertisement

Table of Contents
loading

This manual is also suitable for:

Aironet series

Table of Contents