The access-author policy global command applies a user authentication event authorization policy.
The undo access-author policy global command restores the default configuration.
By default, no user authentication event authorization policy is applied.
Parameter |
Description |
Value |
|---|---|---|
policy-name |
Specifies the name of a user authentication event authorization policy. |
The value must be the name of an existing user authentication event authorization policy on the device. |
Usage Scenario
Users need basic network access rights before they are authenticated. For example, the users need to download 802.1X clients and update the antivirus database. A user authentication event authorization policy can be used to bind the network access rights of users in each phase before authentication success to a user context profile. When a user goes online after a user authentication event authorization policy is applied to the device, the device adds the user to the context profile based on the user context identification result, and assigns the network access rights to the user based on the user authentication result.
Prerequisites
A user authentication event authorization policy has been created using the access-author policy name policy-name command in the system view.
Precautions
This function takes effect only for users who go online after this function is successfully configured.