beautypg.com

Auth-web-server mode – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 1173

background image

Authentication Commands

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

43.47

auth-web-server mode

Use this command with required keyword to configure an intercept mode (from the
intercept, none, or promiscuous modes available) on the web authentication server for
supplicants (client devices). The intercept modes available affect the interception of
clients’ ARPs and the proxy DNS response when using Web-authentication. These
enhancements ensure that Web-authentication will proceed smoothly irrespective of the
IP configuration on the client PC.

Use the no variant of this command to disable the intercept mode (either the intercept,
none, or promiscuous intercept modes) configured on the web authentication server for
supplicants.

Syntax

auth-web-server mode {intercept|none|promiscuous}

no auth-web-server mode {intercept|promiscuous}

Default

Intercept mode on the web authentication server is set to none by default.

Mode

Global Configuration

Usage

See

Chapter 42, Authentication Introduction and Configuration

for overview

information about Web-authentication, allowing Web-authentication to work as
seamlessly as 802.1X authentication.

See the sub-sections

“Interception of clients’ ARPs” on page 42.12

and

“Proxy DNS

response” on page 42.13

for an details of the associated usage of the available intercept

modes.

See the section

“Limitations on Allowed Feature Combinations” on page 42.29

for

information about restrictions regarding combinations of authentication enhancements
working together.

Examples

To enable the intercept mode on the web authentication server, resulting in the switch
intercepting and replying to ARP and DNS messages from the same interface and IP
address, use the following commands:

Parameter

Description

intercept

Selecting this parameter results in web authentication server on the
switch intercepting and replying to ARP and DNS messages from the
same interface and IP address.

none

Selecting this parameter disables the intercept mode on the web
authentication server. No ARP and DNS messages are intercepted and
replied to from the switch from any interfaces or from any IP
addresses.

promiscuous

Selecting this parameter results in the web authentication server on
the switch intercepting and replying to any ARP or DNS messages
from any IP address.

awplus#

configure terminal

awplus(config)#

auth-web-server mode intercept

See also other documents in the category Allied Telesis Computer hardware: