CLI Guide
Security Commands 944
authentication command
Use the authentication command {bounce-port|disable-port} ignore to
disable processing of RADIUS CoA requests to bounce the host port. The no
form of this command honors RADIUS CoA bounce host port requests.
Syntax
authentication command { bounce-port | disable-port } ignore
no authentication command { bounce-port | disable-port } ignore
•
bounce-port
—Ignore CoA requests to disable the port for 10 seconds and
then re-enable it.
•
disable-port
—Ignore CoA requests to administratively disable the port.
Default Configuration
By default, RADIUS CoA bounce host port requests are honored.
By default, RADIUS CoA disable host port requests are honored.
Command Mode
Global Configuration mode
User Guidelines
A RADIUS CoA bounce host port command disables the port for 10 seconds
by bringing the link down and then re-enables the port. The authentication
command bounce-port ignore disables processing of bounce host port CoA
requests and effectively prevents a link flap on the requested RADIUS
authenticated port. A link flap may cause the connected devices to restart the
DHCP address assignment and configuration process.
If a valid and authenticated bounce port request is received from a configured
CoA client and the session cannot be found, the switch returns a CoA-NAK
message with the 503 Session Context Not Found response code. If a valid
and authenticated request is received from a configured CoA client and the
bounce port capability is administratively disabled, a CoA-NAK response is
returned with 501 Administratively Prohibited response code.