PAE Web Proxy Authentication

Navigation

Device > Configure > PAE > PAE Web Proxy Authentication

The following information appears:

Pae Port Number (dot1xPaePortNumber)

Address Type (cpaeWebAuthHostAddrType)

Host Address (cpaeWebAuthHostAddress)

Session Period (cpaeWebAuthAaaSessionPeriod)

Session Leftover Time (cpaeWebAuthHostSessionTimeLeft)

State (cpaeWebAuthHostState)

Host Initialization (cpaeWebAuthHostInitialize)


Pae Port Number (dot1xPaePortNumber)

The Port number associated with this Port.


Address Type (cpaeWebAuthHostAddrType)

Indicates the Internet address type of the host.


Host Address (cpaeWebAuthHostAddress)

Indicates the Internet address of the host. The address type is determined by the value of cpaeWebAuthHostAddrType.


Session Period (cpaeWebAuthAaaSessionPeriod)

Indicates the web proxy authenticated session period on this host, which is supplied by the authentication, authorization, and accounting (AAA) server. If the value of this object is a non-zero value, it takes precedence over the period specified by cpaeWebAuthPortSessionPeriod.


Session Leftover Time (cpaeWebAuthHostSessionTimeLeft)

Indicates the amount of time remaining in the current web proxy authenticated session for this host.


State (cpaeWebAuthHostState)

Indicates the current state of the web proxy authentication state machine.

There are nine possible values:

initialize: Initial state of the web proxy authentication state machine.

connecting: The login page has been sent to the client; the state machine is waiting for a response from the client.

authenticating: Credentials are extracted from the client's response and authentication with the AAA server begins.

authenticated: Web proxy authentication has succeeded. The session timer is started, policies are applied, and the success page is sent back to the client.

authFailed: Web proxy authentication failed. If the retry count has not exceeded the maximum number of attempts, the login page is resent with authentication failure information embedded within it. Otherwise, this object moves to the blackListed state.

parseError: Unable to extract user credentials from the client's response.

sessionTimeout: The session timer expired. User policies are removed and then the state machine moves to the intialize state.

blackListed: The web proxy authentication retry count has exceeded the maximum number of attempts. To move the object from this state, you much set the value of the state machine to initialize.

aaaFail: Either the AAA server is not reachable after sending an authentication request or the host has been in the blackListed state for the period of time specified by cpaeWebAuthQuietPeriod (with Inaccessible Authentication Bypass (IAB) enabled on the corresponding port connected to the host).


Host Initialization (cpaeWebAuthHostInitialize)

Initialization control setting for this host.

When this object is set to true, the web proxy authentication state machine is initialized for the host.

When this object is set to false, nothing happens.

  Note: This object always returns the value false when read.