No relevant resource is found in the selected language.
Enterprise
Worldwide
Huawei Global - English
Support Documentation
WLAN AC V200R010C00 Command Reference
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
mac-authen authentication-method

mac-authen authentication-method

Function

The mac-authen authentication-method command configures the authentication mode for MAC address authentication.

The undo mac-authen authentication-method command restores the default configuration.

By default, the authentication mode for MAC address authentication is set to PAP.

Format

mac-authen authentication-method { chap | pap }

undo mac-authen authentication-method

Parameters

Parameter

Description

Value

chap

Indicates the Challenge Handshake Authentication Protocol (CHAP) authentication mode.

-

pap

Indicates the Password Authentication Protocol (PAP) authentication mode.

-

Views

MAC access profile view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

In MAC address authentication, the access device exchanges RADIUS packets with the authentication server. Differences between authentication modes PAP and CHAP are as follows:

  • PAP is a two-way handshake authentication protocol. It transmits passwords in plain text format in RADIUS packets.
  • CHAP is a three-way handshake authentication protocol. It transmits only user names but not passwords in RADIUS packets. CHAP is more secure and reliable than PAP. If high security is required, CHAP is recommended.

By default, the authentication mode for MAC address authentication is set to PAP. The authentication mode can be changed to CHAP for higher security.

Precautions

The authentication server must support CHAP when the authentication mode is set to CHAP.

Example

# In the MAC access profile mac_access_profile, set the authentication mode for MAC address authentication to CHAP.

<AC6605> system-view
[AC6605] mac-access-profile name mac_access_profile
[AC6605-mac-access-profile-mac_access_profile] mac-authen authentication-method chap
Translation
简体中文
Download
Updated: 2021-02-27

Document ID: EDOC1100064351

Views: 3159354

Downloads: 589

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Huawei e+ App Huawei e+

Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :