< Home

(Optional) Configuring the Quiet Function for MAC Address Authentication

Context

The quiet function for MAC address authentication is enabled on a device by default. When the maximum number of authentication failures exceeds 10, the device quiets a MAC authentication user and does not process authentication requests from the user, reducing impact on the system caused by attackers.

For MAC address authentication users, the quiet function takes effect only when the users are not added to user entries. In the common mode, no user entry is generated when a MAC address authentication user fails the authentication. In this case, the quiet function takes effect and a quiet entry is generated. If the network access rights for user pre-connections or authentication failures are configured, the authorized user enters the pre-connection state, a user entry is generated, and the quiet function does not take effect.

When the number of quiet entries reaches the maximum number, the device does not allow new users who are not in the quiet table to access the network.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run mac-authen quiet-times fail-times

    The maximum number of authentication failures within 60 seconds before the device quiets the MAC authentication user is configured.

    By default, the maximum number of authentication failures is 10.

Parent Topic: Configuring MAC Address Authentication
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >