Operation Manual

ManualsBrandsTrapeze smart mobile ManualsSoftwareMobility System Software 7.3

351

352

353

354

355

356

357

358

359

360

MP Access Point Commands

Mobility System Software Command Reference Guide

Version 7.3

12 – 360

Auth fallthru Secondary (fallthru) encryption type when a user tries to authenticate

but the MX managing the radio does not have an authentication rule

with a userglob that matches the username.

❑ last-resort—Automatically authenticates the user and allows access to the

SSID requested by the user, without requiring a username and password.

❑ none—Denies authentication and prohibits the user from accessing the

SSID.

❑ web-portal—Redirects the user to a web page for login to the SSID.

Sygate On-Demand

(SODA)

Whether SODA functionality is enabled for the service profile. When

SODA functionality is enabled, connecting clients download SODA

agent files, which perform security checks on the client.

Enforce SODA checks If a client is allowed access to the network after it has downloaded and

run the SODA agent security checks. When SODA functionality is

enabled, and the MX is configured to enforce SODA checks, then a

connecting client must download the SODA agent files and pass the

checks in order to gain access to the network.

SODA remediation ACL The name of the ACL to be applied to the client if it fails the SODA

agent checks. If no remediation ACL is specified, then a client is

disconnected from the network if it fails the SODA agent checks.

Custom success

web-page

The name of the user-specified page that the client loads upon

successful completion of the SODA agent checks. If no page is specified,

then the success page is generated dynamically.

Custom failure

web-page

The name of the user-specified page that the client loads if it fails

SODA agent checks. If no page is specified, then the failure page is

generated dynamically.

Custom logout web-page The name of the user-specified page that the client loads upon logging

out of the network, either by closing the SODA virtual desktop, or by

requesting the page. If no page is specified, then the client is

disconnected without loading a logout page.

Custom agent-directory The name of the directory for SODA agent files on the MX switch, if

different from the default. By default, SODA agent files are stored in a

directory with the same name as the service profile.

Static COS Indicates whether static CoS assignment is enabled. When this feature

is enabled, MPs assign the CoS value in the COS field to all user traffic

forwarded by the MP.

COS CoS value assigned by the MP to all user traffic, if static CoS is

enabled. (If static CoS is disabled, WMM or ACLs are used to assign

CoS.)

Client DSCP If packets are classified based on client DSCP level instead of 802.11

priority.

CAC mode Call Admission Control mode:

❑ none—CAC is disabled.

❑ session—CAC is based on the number of active user sessions. If an MP

radio reaches the maximum number of active user sessions specified in the

CAC session field, the MP radio rejects new connection attempts.

CAC sessions Maximum number of user sessions that can be active on an MP radio at

one time, if the CAC mode is session. (If the CAC mode is none, this

value is not used.)

User idle timeout Indicates how many seconds a user session can remain idle (indicated

by no user traffic and no reply to client keepalive probes) before the

session is changed to the Disassociated state.

Idle client probing Indicates whether client keepalive probes are enabled.

Table 12– 19. Output for show service-profile (continued)

Field Description