Manualshelf

Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesFastIron
1951195219531954195519561957195819591960
1900 FastIron Configuration Guide
53-1002494-02
Web authentication mode configuration
Re-sending the passcode log message
If passcode logging is enabled, you can enter a CLI command to retransmit the current passcode to
a Syslog message or SNMP trap. To do so, enter the auth-mode passcode resend-log command.
Brocade(config-vlan-10-webauth)#auth-mode passcode resend-log
Syntax: auth-mode passcode resend-log
NOTE
The switch retransmits the current passcode only. Passcodes that are in the grace period are not
sent.
Manually refreshing the passcode
You can manually refresh the passcode instead of waiting for the system to automatically generate
one. When manually refreshed, the old passcode will no longer work, even if a grace period is
configured. Also, if the passcode refresh method duration of time is used, the duration counter is
reset when the passcode is manually refreshed. The passcode refresh method time of day is not
affected when the passcode is manually refreshed.
To immediately refresh the passcode, enter the auth-mode passcode generate command.
Brocade(config-vlan-10-webauth)#auth-mode passcode generate
Syntax: auth-mode passcode generate
Automatic authentication
By default, if Web Authentication is enabled, hosts need to login and enter authentication
credentials in order to gain access to the network. If a re-authentication period is configured, the
host will be asked to re-enter authentication credentials once the re-authentication period ends.
You can configure Web Authentication to authenticate a host when the user presses the ’Login’
button. When a host enters a valid URL address, Web Authentication checks the list of blocked
MAC addresses. If the hosts’ MAC address is not on the list and the number of allowable hosts has
not been reached, after pressing the ’Login’ button, the host is automatically authenticated for the
duration of the configured re-authentication period, if one is configured. Once the re-authentication
period ends, the host is logged out and needs to enter the URL address again.
NOTE
Automatic authentication is not the same as permanent authentication. (Refer to “Specifying hosts
that are permanently authenticated” on page 1902). You must still specify devices that are to be
permanently authenticated even if automatic authentication is enabled.
To enable automatic authentication, enter the following command.
Brocade(config)#vlan 10
Brocade(config-vlan-10)#webauth
Brocade(config-vlan-10-webauth)#auth-mode none
Syntax: [no] auth-mode none
If automatic authentication is enabled and a host address is not in the blocked MAC address list,
Web Authentication authenticates the host and displays the Login page without user credentials,
then provides a hyperlink to the requested URL site..