Технические ссылки для Cisco Cisco 5760 Wireless LAN Controller
authentication violation
To configure the violation modes that occur when a new device connects to a port or when a new device
connects to a port after the maximum number of devices are connected to that port, use the authentication
violation interface configuration command.
connects to a port after the maximum number of devices are connected to that port, use the authentication
violation interface configuration command.
authentication violation{ protect|replace|restrict|shutdown }
no authentication violation{ protect|replace|restrict|shutdown }
Syntax Description
Drops unexpected incoming MAC addresses. No syslog errors are
generated.
generated.
protect
Removes the current session and initiates authentication with the
new host.
new host.
replace
Generates a syslog error when a violation error occurs.
restrict
Error-disables the port or the virtual port on which an unexpected
MAC address occurs.
MAC address occurs.
shutdown
Command Default
authentication violation shutdown mode is enabled.
Command Modes
Interface configuration
Command History
Modification
Release
This command was introduced.
Cisco IOS XE 3.2SE
Usage Guidelines
Use the authentication violation command to specify the action to be taken when a security violation occurs
on a port.
on a port.
Examples
This example shows how to configure an IEEE 802.1x-enabled port as error-disabled and to shut down when
a new device connects it:
a new device connects it:
Controller(config-if)#
authentication violation shutdown
This example shows how to configure an 802.1x-enabled port to generate a system error message and to
change the port to restricted mode when a new device connects to it:
change the port to restricted mode when a new device connects to it:
Controller(config-if)#
authentication violation restrict
Consolidated Platform Command Reference, Cisco IOS XE Release 3SE (Cisco WLC 5700 Series)
OL-29471-01
363
authentication violation