xStack DES-3800 Series Layer 3 Stackable Fast Ethernet Managed Switch CLI Manual
353
52
W
EB
-
BASED
A
CCESS
C
ONTROL
(WAC)
C
OMMANDS
Web-based Access Control is another port based access control method implemented similarly to the 802.1x port based access control
method previously stated. This function will allow user authentication through a RADIUS server or through the local username and
password set on the Switch when a user is trying to access the network via the Switch, if the port connected to the user is enabled for
this feature.
The user attempting to gain web access will be prompted for a username and password before being allowed to accept HTTP packets
from the Switch. Once accepted, the user will be placed in the configured VLAN that has been set for Web-based Access Control. If
denied access, no packets will pass through to the user and thus, will be prompted for a username and password again.
The Web-based Access Control (WAC) commands in the Command Line Interface (CLI) are listed (along with the appropriate
parameters) in the following table.
Command Parameters
enable wac
disable wac
config wac
{vlan <vlan_name 32> | ports [<portlist> | all] state [enable | disable] |
method [local | radius] | default_redirpath <string 128>}
logout_timer
<min 1-1440>}
create wac user
<username 15> {vlan <vlan_name 32>}
config wac user
<username 15> vlan <vlan_name 32>
delete wac user
<username 15>
show wac user
show wac
{ports [<portlist> | all]}
Each command is listed, in detail, in the following sections.
enable wac
Purpose
Used to enable the Web-based Access Control on the Switch.
Syntax enable
wac
Description
This command is used to enable Web-based Access Control globally
on the Switch.
Parameters
None.
Restrictions
Only Administrator or Operator-level users can issue this command.
Example usage:
To enable Web-based Access Control globally on the Switch.
DES-3800:admin#enable wac
Command: enable wac
Success.
DES-3800:admin#