MSM7xx Controllers Configuration Guide v6.4.0
option in the VSC. The following table lists all possible combinations of authentication types (and
other features) that can be activated, and shows the order in which they are applied.
The
Use controller for
option in a VSC is set to:
NeitherAuthentication and Access controlAuthentication
• MAC lockout +
Wireless MAC filter +
MAC-based (VSC) +
802.1X (VSC)
• MAC lockout +
Wireless MAC filter +
MAC-based (VSC) +
802.1X (VSC)
• MAC lockout +
Wireless MAC filter +
MAC-based (Global) +
HTML-based
or
• MAC lockout +
Wireless MAC filter +
802.1X
or
• MAC lockout +
Wireless MAC filter +
MAC-based (VSC)
• MAC lockout +
VPN-based (VSC)
When MAC-based authentication and 802.1X authentication are enabled
Clients stations only gain access when they are successfully authenticated by both methods. If one
method fails, then access is denied.
When Wireless MAC filter is used alone or with other authentication methods
The following table describes how the MAC filter functions when it is used alone and in combination
with other authentication options:
When used with 802.1X
authentication
When used with MAC-based
authentication
When used
alone
Filter actionClient address
Access is granted or denied based
on result of 802.1X authentication.
Access is granted. MAC-based
authentication is not performed.
Access is
granted.
AllowClient
address is in
the MAC
address list.
Access is denied.Access is denied. MAC-based
authentication is not performed.
Access is
denied.
BlockClient
address is in
the MAC
address list.
Access is granted or denied based
on result of 802.1X authentication.
Access is granted or denied
based on result of MAC-based
Access is
denied.
AllowClient
address is not
authentication. (Not supported
on access-controlled VSCs.)
in the MAC
address list.
Access is granted or denied based
on result of 802.1X authentication.
Access is granted or denied
based on result of MAC-based
authentication.
Access is
granted.
BlockClient
address is not
in the MAC
address list.
Introduction 333