Cisco Cisco Packet Data Interworking Function (PDIF) Prospecto
PDSN Service Configuration Mode Commands
▀ authentication
▄ Cisco ASR 5x00 Command Line Interface Reference
7514
authentication
Configures authentication parameters for specific PDSN service.
Product
PDSN
Privilege
Security Administrator, Administrator
Mode
Exec > Global Configuration > Context Configuration > PDSN Service Configuration
configure > context context_name > pdsn-service service_name
Entering the above command sequence results in the following prompt:
[context_name]host_name(config-pdsn-service)#
Syntax
authentication { [ allow-noauth ] [ chap chap_priority ] [ mschap mschap_priority ] [ pap
pap_priority ] } | [ msid-auth ]
pap_priority ] } | [ msid-auth ]
default authentication
default
Configures authentication parameters for specific PDSN service.
allow-noauth
Default: Disabled
This option configures the system to provide subscribers with network access even though they have not been
authenticated. This command issued by itself would cause the system to not attempt to authenticate
subscribers.
When the allow-noauth option is used in conjunction with commands specifying other authentication
protocols and priorities to use, then if attempts to use those protocols fail, the system will treat the allow-
noauth option as the lowest priority.
If no authentication is allowed, then NAI construct will be implemented in order to provide accounting
records for the subscriber.
This option configures the system to provide subscribers with network access even though they have not been
authenticated. This command issued by itself would cause the system to not attempt to authenticate
subscribers.
When the allow-noauth option is used in conjunction with commands specifying other authentication
protocols and priorities to use, then if attempts to use those protocols fail, the system will treat the allow-
noauth option as the lowest priority.
If no authentication is allowed, then NAI construct will be implemented in order to provide accounting
records for the subscriber.
chap
chap_priority
Default: 1
This option configures the system to attempt to use the Challenge Handshake Authentication Protocol
(CHAP) to authenticate the subscriber.
A
This option configures the system to attempt to use the Challenge Handshake Authentication Protocol
(CHAP) to authenticate the subscriber.
A
chap_priority
must be specified in conjunction with this option. Priorities specify which authentication
protocol should be attempted first, second, third and so on.
chap_priority
must be an integer from 1 through 1000. The lower the integer, the higher the preference.
CHAP is enabled by default as the highest preference.
mschap
mschap_priority
Default: Disabled