Specifications
set authentication last-resort
Chapter 9
AAA Commands
212
If the username does not match an authentication rule for the SSID the user is
attempting to access, UNIVERGE WL Control System uses the fallthru
authentication type configured for the SSID, which can be last-resort,
web-portal (for Web Authentication), or none.
Examples
The following command configures EAP-TLS authentication in the
local UNIVERGE WL Controller database for SSID mycorp and 802.1X client
Geetha:
PROMPT# set authentication dot1x ssid mycorp Geetha eap-tls local
success: change accepted.
The following command configures PEAP-MS-CHAP-V2 authentication at
RADIUS server groups sg1 through sg3 for all 802.1X clients at example.com
who want to access SSID examplecorp:
PROMPT# set authentication dot1x ssid examplecorp *@example.com peap-mschapv2
sg1 sg2 sg3
success: change accepted.
See Also
l clear authentication dot1x on page 188
l set authentication admin on page 203
l set authentication console on page 206
l set authentication mac on page 213
l set authentication web on page 215
l set service-profile auth-fallthru on page 337
l show aaa on page 240
set authentication last-resort
Deprecated in WL1700-MS of UNIVERGE WL Control System V1. The
last-resort user is not required or supported in WL1700-MS of UNIVERGE WL
Control System V1. Instead, a user who accesses the network on an SSID by using
the fallthru access type last-resort is automatically a last-resort user. The
authorization attributes assigned to the user come from the default authorization
attributes set on the SSID.