Solved

Is it possible to delete a netlogin / multiauth session an a port via cli?


Userlevel 2
Hello,
we use MAC and 802.1X authentication with EXOS and EOS switches and sometimes I need to delete a netlogin / multiauth session on a switchport via cli
example:
the "show netlogin session ports" or "show multiauth session ports" showes me an entry like:
Port : 2:22 Station address : 84:2b:2b:12:34:56
Auth status : success Last attempt : Thu Dec 13 14:44:33 2018
Agent type : dot1x Session applied : true
Server type : radius VLAN-Tunnel-Attr : None
Policy index : 4 Policy name : Test (active)
Session timeout : 0 Session duration : 0:29:38
Idle timeout : 0 Idle time : 0:00:00
Auth-Override : disabled Termination time : Not Terminated

I can use to delete the active session with XMS/Policy but not inactive sessions.
If a user connect different systems to his phone and remov the system the entry will not be deleted and automatic reauthentication (i.e. every 30 minutes) is no option in our network.

And when I connected via console at the switch it would be helpfull to delete an entry via cli.

Any suggestions?

Regards,
Axel
icon

Best answer by Tomasz 14 December 2018, 21:27

Hi Axel,

I didn't think of it recently, but maybe you would like those commands for EXOS:
  • clear netlogin state mac-address
  • clear netlogin state port
  • clear netlogin state agent port [dot1x | mac | web-based]
Hope that helps,
Tomasz
View original

2 replies

Userlevel 5
Hi Axel,

I didn't think of it recently, but maybe you would like those commands for EXOS:
  • clear netlogin state mac-address
  • clear netlogin state port
  • clear netlogin state agent port [dot1x | mac | web-based]
Hope that helps,
Tomasz
Userlevel 2
Hi Tomasz,

thanks a lot.
"clear netlogin state mac-address" looks like working well.

Thanks a lot,
Axel

Reply