Configuration Guide User guide
FastIron Configuration Guide 1901
53-1002494-02
Web authentication options configuration
To determine if automatic authentication is enabled on your device, issue the show webauth vlan
<vlan-id> command at the VLAN configuration level.
Syslog messages are generated under the following conditions:
• The feature is enabled
• The feature is disabled
• A MAC address is successfully authenticated
• Automatic authentication cannot occur because the maximum number of hosts allowed has
been reached
Web authentication options configuration
The sections below explain other configuration options for Web Authentication.
Enabling RADIUS accounting for web authentication
When Web Authentication is enabled, you can enable RADIUS accounting to record login (start) and
logout (stop) events per host. The information is sent to a RADIUS server. Note that packet/byte
count is not supported.
To enable RADIUS accounting, enter the accounting command.
Brocade(config-vlan-10-webauth)#accounting
Syntax: [no] accounting
Enter the no accounting command to disable RADIUS accounting for Web Authentication.
Changing the login mode (HTTPS or HTTP)
Web Authentication can be configured to use secure (HTTPS) or non-secure (HTTP) login and logout
pages. By default, HTTPS is used. Figure 202 shows an example Login page.
To change the login mode to non-secure (HTTP), enter the no secure-login command.
Brocade(config-vlan-10-webauth)#no secure-login
To revert back to secure mode, enter the secure-login command.
Brocade(config-vlan-10-webauth)#secure-login
Syntax: [no] secure-login
Specifying trusted ports
You can configure certain ports of a Web Authentication VLAN as trusted ports. All hosts connected
to the trusted ports need not authenticate and are automatically allowed access to the network.
To create a list of trusted ports, enter commands such as the following.
Brocade(config-vlan-10-webauth)#trust-port ethernet 3
Brocade(config-vlan-10-webauth)#trust port ethernet 6 to 10