Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4353
Views
30
Helpful
3
Replies

Radius-attribute 31 difference in configuration

Go to solution
milos_p
Level 1
Level 1

‎10-14-2021 12:21 AM

Hi guys,

 

Does anybody knows practical difference between:

1. radius-server attribute 31 send nas-port-detail

and

2. radius-server attribute 31 send nas-port-detail mac-only

 

Am I going to have some difference in ISE logs between those two commands?

 

Thanks,

Milos

1 Accepted Solution

Accepted Solutions

Go to solution
milos_p
Level 1
Level 1
In response to milos_p

‎10-15-2021 01:16 AM

Well, in the end I tested it.

 

With mac-only, only MAC address of the endpoint is being seen in the logs.

Without mac-only, I can see IP address as well.

 

Regards,

Milos

View solution in original post

3 Replies 3

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎10-14-2021 02:59 AM - edited ‎10-14-2021 02:59 AM

here is self explanatory :

 

 

radius-server attribute 31

To configure Calling-Station-ID (attribute 31) options, use the radius-server attribute 31command in global configuration mode. To disable the Calling-Station-ID (attribute 31) options, use the no form of this command.

radius-server attribute 31 { append-circuit-id | mac format { default | ietf | unformatted } | remote-id | send nas-port-detail [mac-only] }

no radius-server attribute 31 { append-circuit-id | mac format { default | ietf | unformatted } | remote-id | send nas-port-detail [mac-only] }

Syntax Description

append-circuit-id

Appends the PPPoE tag circuit-id and the nas-port-id to the calling-station-id.

mac format

Specifies the format of the MAC address in the Calling Station ID. Select one of the following three options:

  • default (Example: 0000.4096.3e4a)

  • ietf (Example: 00-00-40-96-3E-4A)

  • unformatted (Example: 000040963e4a)

remote-id

Sends the remote ID as the Calling Station ID in the accounting records and access requests.

send nas-port-detail

Includes all NAS port details in the Calling Station ID.

mac-only

(Optional) Includes the MAC address only, if available, in the Calling Station ID.

 

 

reference :

 

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/security/m1/sec-m1-cr-book/sec-cr-r1.html#wp3424534504

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
milos_p
Level 1
Level 1
In response to balaji.bandi

‎10-14-2021 06:43 AM

Hi,

 

I have seen this, as well as in many other sites.

 

Does anyone knows practically what it will do, with and without "mac-only" parameter?

 

Regards,

Milos

Go to solution
milos_p
Level 1
Level 1
In response to milos_p

‎10-15-2021 01:16 AM

Well, in the end I tested it.

 

With mac-only, only MAC address of the endpoint is being seen in the logs.

Without mac-only, I can see IP address as well.

 

Regards,

Milos

Customers Also Viewed These Support Documents