we use MAC and 802.1X authentication with EXOS and EOS switches and sometimes I need to delete a netlogin / multiauth session on a switchport via cli
the "show netlogin session ports" or "show multiauth session ports" showes me an entry like:
Port : 2:22 Station address : 84:2b:2b:12:34:56
Auth status : success Last attempt : Thu Dec 13 14:44:33 2018
Agent type : dot1x Session applied : true
Server type : radius VLAN-Tunnel-Attr : None
Policy index : 4 Policy name : Test (active)
Session timeout : 0 Session duration : 0:29:38
Idle timeout : 0 Idle time : 0:00:00
Auth-Override : disabled Termination time : Not Terminated
I can use to delete the active session with XMS/Policy but not inactive sessions.
If a user connect different systems to his phone and remov the system the entry will not be deleted and automatic reauthentication (i.e. every 30 minutes) is no option in our network.
And when I connected via console at the switch it would be helpfull to delete an entry via cli.
Best answer by Tomasz
I didn't think of it recently, but maybe you would like those commands for EXOS:
- clear netlogin state mac-address
- clear netlogin state port
- clear netlogin state agent port [dot1x | mac | web-based]