取消
显示结果 
搜索替代 
您的意思是: 
cancel
1422
查看次数
0
有帮助
4
回复

请教个3504控制器的问题

adtpre-sale
Beginner
Beginner
请教个问题,改过密码手机尝试登录,然后超过10次就被加进排除名单了,要怎么关闭客户端排,客户的机器是3504的。
1 个已接受解答

已接受的解答

Rps-Cheers
Collaborator
Collaborator
adtpre-sale 发表于 2019-12-17 16:39
好的,我试一下看看

如果有效的话,请标记有用哦{:3_52:}
多谢啦
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !

在原帖中查看解决方案

4 条回复4

Rps-Cheers
Collaborator
Collaborator
adtpre-sale 发表于 2019-12-17 16:39
好的,我试一下看看

如果有效的话,请标记有用哦{:3_52:}
多谢啦
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !

Rps-Cheers
Collaborator
Collaborator
本帖最后由 1540488497lcj 于 2019-12-17 16:41 编辑
如下可能是你需要的操作:
根据需要选择对应的策略。
Configuring Client Exclusion Policies:
Step 1 Choose Security > Wireless Protection Policies > Client Exclusion Policies to open the Client Exclusion Policies page.
Step 2 Select any of these check boxes if you want the controller to exclude clients for the condition specified. The default value for each exclusion policy is enabled.
Excessive 802.11 Association Failures—Clients are excluded on the sixth 802.11 association attempt, after five consecutive failures.
Excessive 802.11 Authentication Failures—Clients are excluded on the sixth 802.11 authentication attempt, after five consecutive failures.
Excessive 802.1X Authentication Failures—Clients are excluded on the fourth 802.1X authentication attempt, after three consecutive failures.
IP Theft or IP Reuse—Clients are excluded if the IP address is already assigned to another device.
Excessive Web Authentication Failures—Clients are excluded on the fourth web authentication attempt, after three consecutive failures.
Step 3 Save your configuration.
=======================================
或者CLI的操作:Configuring Client Exclusion Policies (CLI)
Procedure
Step 1

Enable or disable the controller to exclude clients on the sixth 802.11 association attempt, after five consecutive failures by entering this command:
config wps client-exclusion 802.11-assoc {enable | disable}
Step 2
Enable or disable the controller to exclude clients on the sixth 802.11 authentication attempt, after five consecutive failures by entering this command:
config wps client-exclusion 802.11-auth {enable | disable}
Step 3
Enable or disable the controller to exclude clients on the fourth 802.1X authentication attempt, after three consecutive failures by entering this command:
config wps client-exclusion 802.1x-auth {enable | disable}
Step 4
Configure the controller to exclude clients that reaches the maximum failure 802.1X authentication attempt with the RADIUS server by entering this command:
config wps client-exclusion 802.1x-auth max-1x-aaa-fail-attempts
You can configure the maximum failure 802.1X authentication attempt from 1 to 3 and the default value is 3.
Step 5
Enable or disable the controller to exclude clients if the IP address is already assigned to another device by entering this command:
config wps client-exclusion ip-theft {enable | disable}
Step 6
Enable or disable the controller to exclude clients on the fourth web authentication attempt, after three consecutive failures by entering this command:
config wps client-exclusion web-auth {enable | disable}
Step 7
Enable or disable the controller to exclude clients for all of the above reasons by entering this command:
config wps client-exclusion all {enable | disable}
Step 8
Use the following command to add or delete client exclusion entries.
config exclusionlist {add mac-addr description | delete mac-addr | description mac-addr description}
Step 9
Save your changes by entering this command:
save config
===================================
查看排除的client:
show exclusionlist
Information similar to the following appears:
Dynamically Disabled Clients
----------------------------
MAC Address Exclusion Reason Time Remaining (in secs)
----------- ---------------- ------------------------
00:40:96:b4:82:55 802.1X Failure 51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !

adtpre-sale
Beginner
Beginner
1540488497lcj 发表于 2019-12-17 16:38
如下可能是你需要的操作:
Configuring Client Exclusion Policies:
Step 1 Choose Security > Wirel ...

好的,我试一下看看

fortune
VIP Expert VIP Expert
VIP Expert
show exclusionlist 查看黑名单
config exclusionlist {add | delete | description} 移除 delete 如
config exclusionlist delete 00:25:d3:8b:00:13
你看看
入门指南

使用上面的搜索栏输入关键字、短语或问题,搜索问题的答案。

我们希望您在这里的旅程尽可能顺利,因此这里有一些链接可以帮助您快速熟悉思科社区:





快捷链接