< Home

Configuring a MAC Address Whitelist for Access Device Authentication

This section provides a sample of configuring a MAC address whitelist for access device authentication.

Table 1 Configuring a MAC address whitelist for access device authentication

Operation

XPATH
edit-config /huawei-nac:nac-access/policy-association/as-auth/whitelist-mac-address

Data Requirements

Table 2 Configuring a MAC address whitelist for access device authentication

Item

Data

Description
MAC address whitelist for access device authentication 00:aa:aa:aa:aa:aa Multiple MAC address whitelists can be configured at a time.

Request Example

<?xml version='1.0' encoding='UTF-8'?>
<rpc message-id="5" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
  <edit-config>
    <target>
      <running/>
    </target>
    <config>
      <hw-nac:nac-access xmlns:hw-nac="urn:huawei:params:xml:ns:yang:huawei-nac">
        <hw-nac:policy-association>
          <hw-nac:as-auth>
            <hw-nac:whitelist-mac-address>00:aa:aa:aa:aa:aa</hw-nac:whitelist-mac-address>
          </hw-nac:as-auth>
        </hw-nac:policy-association>
      </hw-nac:nac-access>
    </config>
  </edit-config>
</rpc>

Response Example

# Sample of successful response.

<?xml version='1.0' encoding='UTF-8'?>
<rpc-reply xmlns="urn:ietf:params:xml:ns:netconf:base:1.0" message-id="5">
 <ok/>
</rpc-reply>

# Sample of failed response.

<?xml version='1.0' encoding='UTF-8'?>
<rpc-reply xmlns="urn:ietf:params:xml:ns:netconf:base:1.0" message-id="5">
  <rpc-error>
    <error-app-tag>-1</error-app-tag>
    <error-message>The configuration/operation does not support.</error-message>
    <error-info>Error on node /huawei-nac:nac-access/policy-association/as-auth/whitelist-mac-address[.="00:aa:aa:aa:aa:aa"]</error-info>
  </rpc-error>
</rpc-reply>
Table 3 Deleting the configured MAC address whitelist used for access device authentication

Item

Data

Description
MAC address whitelist for access device authentication 00:aa:aa:aa:aa:aa Multiple MAC address whitelists can be deleted at a time.

Request Example

?xml version='1.0' encoding='UTF-8'?>
<rpc message-id="6" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
  <edit-config>
    <target>
      <running/>
    </target>
    <config>
      <hw-nac:nac-access xmlns:hw-nac="urn:huawei:params:xml:ns:yang:huawei-nac">
        <hw-nac:policy-association xmlns:xc="urn:ietf:params:xml:ns:netconf:base:1.0" xc:operation="delete">
          <hw-nac:as-auth>
            <hw-nac:whitelist-mac-address>00:aa:aa:aa:aa:aa</hw-nac:whitelist-mac-address>
          </hw-nac:as-auth>
        </hw-nac:policy-association>
      </hw-nac:nac-access>
    </config>
  </edit-config>
</rpc>

Response Example

# Sample of successful response.

<?xml version='1.0' encoding='UTF-8'?>
<rpc-reply xmlns="urn:ietf:params:xml:ns:netconf:base:1.0" message-id="6">
 <ok/>
</rpc-reply>

# Sample of failed response.

<?xml version='1.0' encoding='UTF-8'?>
<rpc-reply xmlns="urn:ietf:params:xml:ns:netconf:base:1.0" message-id="6">
  <rpc-error>
    <error-app-tag>-1</error-app-tag>
    <error-message>The configuration/operation does not support.</error-message>
    <error-info>Error on node /huawei-nac:nac-access/policy-association/as-auth/whitelist-mac-address[.="00:aa:aa:aa:aa:aa"]</error-info>
  </rpc-error>
</rpc-reply>
Parent Topic: Policy Association
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >