Radius-Based Mac Authentication Configuration Example - HP 12500 Series Configuration Manual

[Device] mac-authentication interface GigabitEthernet 3/0/1
# Specify the ISP domain for MAC authentication.
[Device] mac-authentication domain aabbcc.net
# Set the MAC authentication timers.
[Device] mac-authentication timer offline-detect 180
[Device] mac-authentication timer quiet 180
# Configure MAC authentication to use MAC-based accounts. The MAC address usernames and
passwords are hyphenated and in lowercase.
[Device] mac-authentication user-name-format mac-address with-hyphen
Verifying the configuration
# Display MAC authentication settings and statistics.
<Device> display mac-authentication
MAC address authentication is enabled.
User name format is MAC address, like xx-xx-xx-xx-xx-xx
Fixed username:mac
Fixed password:not configured
Silent Mac User info:
MAC Addr
Gigabitethernet3/0/1 is link-up
MAC address authentication is enabled
Authenticate success: 1, failed: 0
Current online user number is 1
MAC Addr
00e0-fc12-3456
# After the user passes authentication, use the display connection command to display the online user
information.
<Device> display connection
slot:3
Index=29
IP=N/A
Ipv6=N/A
MAC=00e0-fc12-3456
Total 1 connection(s) matched on slot 3.
Total 1 connection(s) matched.

RADIUS-based MAC authentication configuration example

Network requirements
As shown in
uses RADIUS servers for authentication, authorization, and accounting.
Offline detect period is 180s
Quiet period is 180s.
Server response timeout value is 100s
The max allowed user number is 4096 per slot
Current user number amounts to 1
Current domain is aabbcc.net
Authenticate state
MAC_AUTHENTICATOR_SUCCESS
,Username=00-e0-fc-12-34-56@aabbcc.net
Figure 34, a host connects to port GigabitEthernet 3/0/1 on the access device. The device
From Port
Auth Index
29
100
Port Index