Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipmentAironet 1040 Series
11121314151617181920
2-6
Cisco IOS Command Reference for Cisco Aironet Access Points and Bridges
0L-24115-01
Chapter 2 Cisco IOS Commands for Access Points and Bridges
aaa pod server
aaa pod server
To enable inbound user sessions to be disconnected when specific session attributes are presented, use the
aaa pod server global configuration command. To disable this feature, use the no form of this command.
Packet of Disconnect (POD) consists of a method of terminating a session that has already been connected.
The POD is a RADIUS disconnect_request packet and is intended to be used in situations where the authen
-
ticating agent server wants to disconnect the user after the session has been accepted by the RADIUS
access_accept packet.
aaa pod server {
auth-type [all | any | session-key] |
clients IP-address |
ignore [server-key | session-key] |
port number |
server-key string}
no aaa pod server
Syntax Description
Command Default The POD server function is disabled.
auth-type
(Optional) Specifies the type of authorization required for disconnecting
sessions. For 802.11 sessions, the Calling-Station-ID [31] RADIUS attribute must
be supplied in the POD request. This is the MAC address of the client. No other
attributes are used; therefore all and any have the same effect.
Note session-key is not supported for 802.11 sessions.
any
(Optional) Specifies that the session that matches all attributes sent in the POD
packets are disconnected. The POD packet can contain one or more of four key
attributes (user-name, framed-IP-address, session-ID, and session-key).
all (Optional) Only a session that matches all four key attributes is disconnected. All is
the default.
clients address
(Optional) Specifies the IP addresses for up to four RADIUS servers that may be
nominated as clients. If this configuration is present and a POD request originates
from a device that is not on the list, it is rejected.
ignore
(Optional) When set to server-key, the shared secret is not validated when a POD
request is received.
port number
(Optional) Specifies the unsolicited data packet (UDP) port on which the access
point listens for packet of disconnect (POD) requests. If no port is specified, the
default 1700 port is used.
session-key
(Optional) Specifies that the session that has a matching session-key attribute is
disconnected. All other attributes are ignored.
Note This option is not supported for 802.11 sessions.
server-key string
Configures the secret text string that is shared between the network access server and
the client workstation. This secret string must be the same on both systems.