Versions Compared

Old Version 1

changes.mady.by.user Tracy Yang

Saved on

compared with

New Version 2

changes.mady.by.user Tracy Yang

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Step9         Verify the configuration.

   a)      After starting the browser and entering any Web address, the user is redirected to the Web authentication login page. Run command run show dot1x interface gigabit-ethernet <interface-name> to check the CWA authentication configurations.

Code Block
admin@Xorplus# run show dot1x interface gigabit-ethernet ge-1/1/11
Interface ge-1/1/11:
============================================================
  Client MAC                : 10:11:01:39:1a:00
  Status                    : unauthorized
  Redirect URL              : https://www.clearpass.com/guest/weblogin.php/2?&mac=10:11:01:39:1a:00
============================================================
  Client MAC                : a1:31:a1:b9:6a:0c
  Status                    : unauthorized
  Redirect URL              : https://www.clearpass.com/guest/weblogin.php/2?&mac=a1:31:a1:b9:6a:0c
============================================================
  Client MAC                : a2:e1:55:78:1a:33
  Status                    : unauthorized
  Redirect URL              : https://www.clearpass.com/guest/weblogin.php/2?&mac=a2:e1:55:78:1a:33
============================================================

 b)      The user then enters the user name and password for authentication. If the user name and password are correct, an authentication success message is displayed on the Web authentication page. The user can then access the network.

 c)      Run the run show dot1x interface or run show dot1x interface gigabit-ethernet <interface-name> to check the CWA authentication configurations. The command output (WEB = enable) shows that the CWA authentication has been enabled on the interface ge-1/1/1 and MAC address addresses 10:11:01:39:1a:00 is , a1:31:a1:b9:6a:0c and a2:e1:55:78:1a:33 are successfully authenticated.

Code Block
admin@Xorplus# run show dot1x interface
Interface  802.1x   MAC-RADIUS  WEB   HOST-MODE   CLIENT-MAC  CLIENT-STATUS
-------------------------------------------------------------------------------------
ge-1/1/1  disable  enable   enable   multiple(3) 10:11:01:39:1a:00  authorized
                                                          a1:31:a1:b9:6a:0c  authorized
                                                          a2:e1:55:78:1a:33  authorized
 
admin@Xorplus# run show dot1x interface gigabit-ethernet ge-1/1/1
Interface ge-1/1/1:
============================================================
  Client MAC               : 10:11:01:39:1a:00
  Status                    : authorized
  Success Auth Method       : MAB
  Dynamic VLAN ID         : 100 (active)
============================================================  
  Client MAC                  : a1:31:a1:b9:6a:0c
  Status                       : authorized
  Success Auth Method           : MAB
  Dynamic VLAN ID            : 100 (active)
============================================================  
  Client MAC                  : a2:e1:55:78:1a:33
  Status                       : authorized
  Success Auth Method           : MAB
  Dynamic VLAN ID            : 100 (active)
============================================================

   b)      After starting the browser and entering any Web address, the user is redirected to the Web authentication login page. The user then enters the user name and password for authentication.

...