3com WXR100 3CRWXR10095A User Manual
470
C
HAPTER
21: C
ONFIGURING
AAA
FOR
N
ETWORK
U
SERS
Displaying Session Information for Web Portal WebAAA Users
To display user session information for Web Portal WebAAA users, use
the following command:
the following command:
display sessions network [user user-glob |
mac-addr mac-addr-glob | ssid ssid-name | vlan vlan-glob |
session-id session-id | wired] [verbose]
mac-addr mac-addr-glob | ssid ssid-name | vlan vlan-glob |
session-id session-id | wired] [verbose]
You can determine whether a Web Portal WebAAA user has completed
the authentication and authorization process, based on the username
displayed in the session table. The following command shows the
sessions for SSID mycorp.
the authentication and authorization process, based on the username
displayed in the session table. The following command shows the
sessions for SSID mycorp.
WX4400# display sessions network ssid mycorp
User Sess IP or MAC VLAN Port/
Name ID Address Name Radio
------------------------------ ---- ----------------- --------------- -----
alice
User Sess IP or MAC VLAN Port/
Name ID Address Name Radio
------------------------------ ---- ----------------- --------------- -----
alice
4* 192.168.12.101
corpvlan
3/1
web-portal-mycorp
5 192.168.12.102
corpvlan
3/1
2 sessions total
This example shows two sessions. The session for alice has the user’s
name and is flagged with an asterisk ( * ). The asterisk indicates that the
user has completed authentication and authorization. The session for
web-portal-mycorp indicates that a WebAAA user is on the network but
is still being authenticated. The user alice has all the access privileges
configured for the user, whereas the user who is still on the portal session
with the name web-portal-mycorp has limited access to resources. By
default, this user can send and receive DHCP traffic only. Everything else
is captured by the web portal.
name and is flagged with an asterisk ( * ). The asterisk indicates that the
user has completed authentication and authorization. The session for
web-portal-mycorp indicates that a WebAAA user is on the network but
is still being authenticated. The user alice has all the access privileges
configured for the user, whereas the user who is still on the portal session
with the name web-portal-mycorp has limited access to resources. By
default, this user can send and receive DHCP traffic only. Everything else
is captured by the web portal.
After authentication and authorization are complete, the
web-portal-mycorp username is replaced with the username entered by
the WebAAA user during login. The following example shows session
information for the same user, but after the user is authorized to access
resources on the network:
web-portal-mycorp username is replaced with the username entered by
the WebAAA user during login. The following example shows session
information for the same user, but after the user is authorized to access
resources on the network:
WX4400# display sessions network ssid mycorp
User Sess IP or MAC VLAN Port/
Name ID Address Name Radio
------------------------------ ---- ----------------- --------------- -----
alice
User Sess IP or MAC VLAN Port/
Name ID Address Name Radio
------------------------------ ---- ----------------- --------------- -----
alice
4* 192.168.12.101
corpvlan
3/1
bob
5* 192.168.12.102
corpvlan
3/1
2 sessions total