3com MSR 20-20 참조 매뉴얼
2012
C
HAPTER
132: MAC A
UTHENTICATION
C
ONFIGURATION
C
OMMANDS
Description
Use the mac-authentication domain command to specify the ISP domain for
MAC authentication.
MAC authentication.
Use the undo mac-authentication domain command to restore the default.
By default, the default ISP domain (system) is used.
Example
# Specify the ISP domain for MAC authentication as domain1.
<Sysname> systme-view
[Sysname] mac-authentication domain domain1
mac-authentication timer
Syntax
mac-authentication timer { offline-detect offline-detect-value | quiet quiet-value |
server-timeout server-timeout-value }
server-timeout server-timeout-value }
undo mac-authentication timer { offline-detect | quiet | server-timeout }
View
System view
Parameter
offline-detect offline-detect-value: Specifies the offline detect interval, in the
range 60 to 65,535 seconds.
range 60 to 65,535 seconds.
quiet quiet-value: Specifies the quiet period, in the range 1 to 3,600 seconds.
server-timeout server-timeout-value: Specifies the server timeout period, in the
range 100 to 300 seconds.
range 100 to 300 seconds.
Description
Use the mac-authentication timer command to set the MAC authentication
timers.
timers.
Use the undo mac-authentication timer command to restore the defaults.
By default, the offline detect interval is 300 seconds, the quiet period is 60
seconds, and the server timeout period is 100 seconds.
seconds, and the server timeout period is 100 seconds.
The following timers function in the process of MAC authentication:
■
Offline detect timer: At this interval, the device checks to see whether an online
user has gone offline. Once detecting that a user becomes offline, the device
sends to the RADIUS server a stop accounting notice.
user has gone offline. Once detecting that a user becomes offline, the device
sends to the RADIUS server a stop accounting notice.
■
Quiet timer: Whenever a user fails MAC authentication, the device does not
initiate any MAC authentication of the user during such a period.
initiate any MAC authentication of the user during such a period.
■
Server timeout timer: During authentication of a user, if the device receives no
response from the RADIUS server in this period, it assumes that its connection
to the RADIUS server has timed out and forbids the user from accessing the
network.
response from the RADIUS server in this period, it assumes that its connection
to the RADIUS server has timed out and forbids the user from accessing the
network.
Related command: