User's Manual
– 175 –
19 MAC Address Authentication
Commands
Use these commands to define MAC authentication on the access point. For local
MAC authentication, first define the default filtering policy, then enter the MAC
addresses to be filtered, indicating if they are allowed or denied. For RADIUS MAC
authentication, the MAC addresses and filtering policy must be configured on the
RADIUS server.
mac-authentication
server
This command sets address filtering to be performed with local or remote options.
Use the no form to disable MAC address authentication.
Syntax
mac-authentication server [local | remote]
no mac-authentication server
local - Authenticate the MAC address of wireless clients with the local
authentication database during 802.11 association.
remote - Authenticate the MAC address of wireless clients with the RADIUS
server during 802.1X authentication.
Default
Disabled
Command Mode
Global Configuration
Table 15: MAC Address Authentication
Command Function Mode Page
mac-authentication server Sets address filtering to be performed with local or
remote options
GC
175
mac-authentication server
local address default
Sets local filtering to allow or deny listed addresses GC
176
mac-authentication server
local address entry
Enters a MAC address in the local filter table GC
176
mac-authentication server
local address delete
Removes a MAC address from the local filter table GC
177
mac-authentication
session-timeout
Sets the interval at which associated clients will be
re-authenticated with the RADIUS server
authentication database
GC
178
show authentication Shows all authentication settings, as well as the
address filter table
Exec
178