< Home

lldp sensor-ap authentication disable

Function

The lldp sensor-ap authentication disable command disables an NAC-enabled interface of a switch from performing authentication on APs identified through LLDP.

The undo lldp sensor-ap authentication disable command restores the default configuration.

By default, an NAC-enabled interface on the switch needs to authenticate APs identified through LLDP.

Format

lldp sensor-ap authentication disable

undo lldp sensor-ap authentication disable

Parameters

None

Views

Authentication profile view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

In wired and wireless convergence scenarios, an NAC-enabled interface on a switch authenticates APs and terminals (such as printers and PCs) that go online on this interface. In most cases, only users connected to the network need to be authenticated, and authenticating APs is optional. If NAC authentication is required only for access terminals but not APs on the live network, you can run the lldp sensor-ap authentication disable command to disable the NAC-enabled interface from performing authentication on the APs identified through LLDP.

Precautions

  • If an AP already has online wireless users, these users will go online after you run the undo lldp sensor-ap authentication disable command.

  • This command takes effect only when the authentication profile is applied to a Layer 2 interface.

  • This function does not take effect in policy association and SVF scenarios.

Example

# Disable a switch from performing authentication on APs identified through LLDP in the view of the authentication profile authen1.
<HUAWEI> system-view
[HUAWEI] authentication-profile name authen1
[HUAWEI-authen-profile-authen1] lldp sensor-ap authentication disable
Parent Topic: NAC Configuration Commands (Unified Mode)
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >