SineDigital,Inc.
Installation Guide for MW-1500AP(H)
Entire contents 2003
SineDigital,Inc
.
All rights reserved
Page 13
Console Commands
Available console commands are explained below. Many of the commands listed in here have
modifiers, which in turn are shown within brackets (i.e. [ ]). Multiple choices of modifiers are
separated by slashes (i.e. /). Alphanumerical or hexadecimal values are shown within angle
brackets (i.e. < >).
(1) aaa
This command is used to configure the IEEE 802.1x authentication (RADIUS authentication)
functions of the MW-1500AP(H). The command
show aaa
will display the IEEE 802.1x's
current configuration status. In addition, the authentication server and accounting server can
each be configured separately. Below is a list of commands related to MW-1500AP(H)'s
authentication function.
aaa
: Shows a list of possible
aaa
commands
aaa [enable / disable]
: Enables/disables operation of AAA functions.
aaa eap [enable / disable]
: Enables/disables operation of EAP-MD5 (i.e. 802.1x)
authentication at the RADIUS server.
aaa macauth [enable / disable]
: Enables/disables operation of MAC address authentication
at the RADIUS server.
aaa session max <number>
: Defines the maximum number of AAA sessions (i.e. users).
aaa session idle <sec>
: Defines the AAA session's idle timeout in seconds. The idle timeout
is how much time will be allowed for the client to successfully pass authentication.
The authentication process in the MW-1500AP(H) when it is operating the MAC
authentication function starts at the moment wireless connection is established between
client and MW-1500AP(H). Whereas, the authentication process in the MW-1500AP(H)
when its is operating the 802.1x authentication function starts at the moment the client tries
to login with its user ID and password.
There are three (3) possible types of values you can assign for the idle timeout (the factory
default setting is
300 seconds
):
Negative (-)
: Entering a negative value (e.g. -100), the MW-1500AP(H) will not even start a
session if the client fails authentication, thus not even allowing for a "wait period" in
which the client may try to re-authenticate.
Zero (0)
: Entering a zero value (i.e. 0), the MW-1500AP(H) will start a session for the
connecting client and allow for an infinite "wait period" (i.e. the MW-1500AP(H) will not
delete the unauthenticated client's session information).
Positive (+)
: You may also manually determine the idle time period (from 60 to
2,147,483,647 seconds) during which the MW-1500AP(H) will wait for the client to re-
authenticate. If the client fails to authenticate until the specified idle time terminates, that
client's session information will be immediately deleted from the MW-1500AP(H)'s
memory. The factory default for this setting is
60 seconds
.
aaa session delete
: Shows a list of AAA sessions currently in progress. Selecting a
session's number will delete that session.
