Device MAC Authentication Service Template

This template is designed for authenticating guest devices based on their MAC Media Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. address. You can limit the network access for guest devices that do not have user directly associated with them for a specific duration in days or by the bandwidth limit.

To access the Device MAC Authentication service template:

1. Navigate to Configuration > Service Templates & Wizards.

2. From the Service Templates & Wizards page, select Device MAC Authentication.The Service Templates - Device MAC Authentication page opens to the General tab.

Figure 1  Device MAC Authentication Service Template

Specify the parameters in the Device MAC Authentication service template as described in the following table:

Table 1: Device MAC Authentication Template Parameters

Parameter

Action/Description

General

Select Prefix

Select a prefix from the existing list of prefixes. This populates the preconfigured information in the Authentication and SP Details sections. The Name Prefix field is not editable.

Name Prefix

Enter a prefix that you want to append to services using this template. Use this to identify services that use templates.

Network Settings

Select Device

Select a preconfigured device from the drop-down list. To create a new device, leave this field blank and enter the remaining fields.

Device Name

The name of the device is populated automatically based on the device selected from the Select Device field. If you create a new device, enter the name of the device.

IP Address

The IP address of the device is populated automatically based on the device selected from the Select Device field. If you create a new device, enter the name of the device.

Vendor Name

The name of the manufacturer of the device is populated automatically based on the device selected from the Select Device field. If you create a new device, enter the name of the manufacturer of the device.

RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  Shared Secret

Enter the shared secret that is configured on the controllerand in Policy Manager to send and receive RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  requests.

Enable RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions.

Select to enable RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  initiated Change of Authorization (CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions. ) on the network device.

RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions. Port

Specifies the default port 3799 if RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions. is enabled. Change this value only if you defined a custom port on the network device.

Device Access Restrictions

Days allowed for access

Select the days on which network access is allowed.

Maximum bandwidth allowed per device

Enter a number to set an upper limit for the amount of data in megabytes to which a device is allowed per day. A value of 0 (zero), the default, means no limit is set.