web-auth-server (Portal access profile view)
Function
The web-auth-server command configures the Portal server profile used by a Portal access profile.
The undo web-auth-server command restores the default setting.
By default, a Portal access profile does not use any Portal server profile.
Format
web-auth-server server-name [ bak-server-name ] { direct | layer3 }
undo web-auth-server
Usage Scenario
After a Portal server profile is configured on the device, this profile must be bound to a Portal access profile. When users who use the Portal access profile attempt to access charged network resources, the HTTP requests are forcibly redirected to the authentication page of the Portal server to implement Portal authentication.
To improve Portal authentication reliability, the backup Portal server profile can also be bound to the Portal access profile. When the primary Portal server is disconnected, the users are redirected to the backup Portal server for authentication. This function can take effect only when the Portal server detection function is enabled using the server-detect command and heartbeat detection is enabled on the Portal server.
- direct: When there is no Layer 3 forwarding device between the device and a user, the device can learn the user's MAC address. You can configure the Layer 2 authentication mode so that the device can identify the user using the IP address and MAC address.
- layer3: When there is a Layer 3 forwarding device between the device and a user, the device cannot learn the user's MAC address and can only identify the user using the IP address. You need to configure the Layer 3 authentication mode.
