Installation guide
Configuring the Switch
3-100
3
Configuring Web Authentication
Web authentication is configured on a per-port basis, however there are four
configurable parameters that apply globally to all ports on the switch.
Command Attributes
• System Authentication Control – Enables Web Authentication for the switch.
(Default: Disabled)
• Session Timeout – Configures how long an authenticated session stays active
before it must be re-authenticated. (Range: 300-3600 seconds; Default: 3600
seconds)
• Quiet Period – Configures how long a host must wait to attempt authentication
again after it has exceeded the maximum allowable failed login attempts.
(Range: 1-180 seconds; Default: 60 seconds)
• Login Attempts – Configures the number of times a supplicant may attempt and
fail authentication before it must wait the configured quiet period. (Range: 1-3
attempts; Default: 3 attempts)
Web – Click Security, Web Authentication, Configuration.
Figure 3-57 Web Authentication Configuration
CLI – This example globally enables the system authentication control, configures
the session timeout, quiet period and login attempts, and displays the configured
global parameters.
Console(config)#mac-authentication reauth-time 3000 4-149
Console(config)#web-auth system-auth-control 4-154
Console(config)#web-auth session-timeout 1800 4-154
Console(config)#web-auth quiet-period 20 4-153
Console(config)#web-auth login-attempts 2 4-153
Console(config)#end
Console#show web-auth 4-156
Global Web-Auth Parameters
System Auth Control : Enabled
Session Timeout : 1800
Quiet Period : 20
Max Login Attempts : 2
Console#