Specifications
2-274
Cisco IOS Command Reference for Cisco Aironet Access Points and Bridges
0L-24115-01
Chapter 2 Cisco IOS Commands for Access Points and Bridges
user (local server configuration mode)
user (local server configuration mode)
Use the user local server configuration command to specify the users allowed to authenticate using the
local authenticator. As a local authenticator, the access point performs LEAP, EAP-FAST, and
MAC-based authentication for up to 50 client devices. The access point performs up to 5 authentications
per second.
user username
{password | nthash} password
[group group-name]
[mac-auth-only]
Note This command is not supported on bridges.
Syntax Description
Defaults This command has no defaults.
Command Modes Local server configuration mode
Command History
Examples This example shows how to add a user to the list of clients allowed to authenticate using LEAP on the
local authenticator:
AP(config-radsrv)# user sam password rover32 group cashiers
username Specifies the user’s username. To add a client device for MAC-based
authentication, enter the device’s MAC address.
password password Specifies the password assigned to the user. To add a client device for
MAC-based authentication, enter the device’s MAC address.
nthash password Specifies the NT value of the user’s password. If you only know the NT
value of the password, which you can often find in the authentication
server database, you can enter the NT hash as a string of hexadecimal
digits.
group group-name (Optional) Specifies the user group to which the user is assigned
mac-auth-only (Optional) Specifies that the user is allowed to authenticate using only
MAC authentication.
Release Modification
12.2(11)JA This command was introduced.
12.2(15)JA This command was modified to support MAC address authentication on the
local authenticator.
12.3(2)JA This command was modified to support EAP-FAST authentication on the
local authenticator.