KB.15.15

Figure 47 Show command displaying HTTP redirect configuration

Reauthenticating a MAC Authenticated client

Using SNMP

The MIB variable hpicfUsrAuthMacAuthClientReauthenticateEntry in the hpicfUsrAuthMIB provides

the capability to reauthenticate a specific MAC client on a port. The MAC address and port are

required for SNMP reauthentication.

Using the CLI

To reauthenticate a client using the CLI, use this command:

HP Switch(config)# aaa port-access mac-based <single-port> reauthenticate mac-addr<MAC address>

The keyword mac-addr specifies single client reauthentication. If the reauthenticate parameter

is entered without the mac-addr keyword and MAC address, the command is executed as port

reauthentication — all clients on a port are reauthenticated.

Configuring the registration server URL

To configure the registration server URL, the command is:

HP Switch(config)# aaa port-access mac-based

unauth-redirect <URL>

Unconfiguring a MAC Authenticated registration server

Each configured registration server’s URL must be removed by specifying it exactly, for example:

HP Switch(config)# no aaa port-access mac-based

unauth-redirect <url>

registration server/reg.html

Configuring web-based authentication

Preparation for web-based authentication

1. If you have not already done so, configure a local username and password pair on the switch.

2. Identify or create a redirect URL for use by authenticated clients. HP recommends that you

provide a redirect URL when using web authentication. If a redirect URL is not specified, web

browser behavior following authentication can not be acceptable.

3. If you plan to use multiple VLANs with web authentication, ensure that these VLANs are

configured on the switch and that the appropriate port assignments have been made. Confirm

that the VLAN used by authorized clients can access the redirect URL.

Configuring web-based authentication 83