HP 2800 User Manual

Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches
Configuring Web Authentication on the Switch

Syntax:

[no] aaa port-access web-based [e] < port-list > [client-moves]

Allows client moves between the specified ports under
Web Auth control. When enabled, the switch allows
clients to move without requiring a re-authentication.
When disabled, the switch does not allow moves and
when one does occur, the user will be forced to re-
authenticate. At least two ports (from port(s) and to
port(s)) must be specified.

Use the

no form of the command to disable client moves

between ports under Web Auth control.
(Default: disabled – no moves allowed)

Syntax:

aaa port-access web-based [e] < port-list >

[logoff-period] <60-9999999>]

Specifies the period, in seconds, that the switch
enforces for an implicit logoff. This parameter is
equivalent to the MAC age interval in a traditional
switch sense. If the switch does not see activity after a
logoff-period interval, the client is returned to its pre-
authentication state. (Default: 300 seconds)

Syntax:

aaa port-access web-based [e] < port-list > [max-requests <1-10>]

Specifies the number of authentication attempts that
must time-out before authentication fails.
(Default: 2)

Syntax:

aaa port-access web-based [e] < port-list > [max-retries <1-10>]

Specifies the number of the number of times a client
can enter their user name and password before authen­
tication fails. This allows the reentry of the user name
and password if necessary.
(Default: 3)

3-20