Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility RFS Controller CLI Reference Guide

767

53-1003098-01

7

(config)#aaa-policy macauth

(config-aaa-policy-macauth)#authentication server <1-6> [host

|onboard]

Attach the AAA policy to the device or profile. When attached to a profile, the AAA policy is
applied to all devices using this profile.

(config-device-aa-bb-cc-dd-ee)#mac-auth use aaa-policy macauth

(config-profile-)#mac-auth use aaa-policy

macauth

3. Enable mac-auth on the device’s desired GE port. When enabled on a profile, MAC address

authentication is enabled, on the specified GE port, of all devices using this profile.

(config-device-aa-bb-cc-dd-ee)#interface ge x

(config-device-aa-bb-cc-dd-ee-gex)#mac-auth

(config-profile-)#interface ge x

(config-profile-)#mac-auth

Supported in the following platforms:

•

Wireless Controllers — Brocade Mobility RFS4000, Brocade Mobility RFS6000, Brocade
Mobility RFS7000

Syntax:

mac-auth use aaa-policy

Parameters

mac-auth use aaa-policy

Example

The following examples demonstrate the configuration of authentication of MAC

addresses on wired ports:

rfs4000-229D58(config-aaa-policy-mac-auth)#authentication server 1 onboard

controller

rfs4000-229D58(config-aaa-policy-mac-auth)#show context

aaa-policy mac-auth

authentication server 1 onboard controller

rfs4000-229D58(config-aaa-policy-mac-auth)#

rfs4000-229D58(config)#radius-group RG

rfs4000-229D58(config-radius-group-RG)#policy vlan 11

rfs4000-229D58(config-radius-group-RG)#show context

radius-group RF

policy vlan 11

rfs4000-229D58(config-radius-group-RG)#

mac-auth

Enables 802.1X authentication of MAC addresses on this profile. Use the device configuration mode to
enable this feature on a device.

use aaa-policy

Associates an existing AAA policy with this profile (or device)

•

– Specify the AAA policy name.

The AAA policy used should be created especially for MAC authentication.