How HTTP redirect works

The unauth-redirect option must be configured with the registration server’s URL as a parameter before HTTP redirect operations can begin. The full URL must be used.

Syntax

[no] aaa port-access mac-based unauth-redirect

Configure the HTTP redirect registration server feature.

<redirect-URL-str>

Enables the HTTP redirect registration server feature by configuring the URL of the registration page. An entry can have either an IP address or a DNS name. Only one server can be configured.

NOTE:

The entire URL must be used, including the “http://” or “https://” portion.

[restrictive-filter]

Enables the redirect server to only return a Warning or Information page.

[timeout <seconds>]

The time (in seconds) before a client in an unauthorized redirection state is removed from the state tables.

Range: <30-10800>seconds

Default: 1800 seconds

CAUTION:

Rogue clients can attempt to access any web pages on the web/registration server via interface ports configured for MAC authentication.