Authorization; Accounting; System And Administration Configuration - 3Com 3CRWX120695A User Manual

Wireless lan mobility system wireless lan switch manager

Hide thumbs Also See for 3CRWX120695A:

Configuration manual (728 pages)

Reference manual (570 pages)

Command reference manual (526 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

page of 190

/ 190
Contents
Table of Contents
Bookmarks

Table of Contents

2: P

HAPTER

LANNING AND

System and

Administration

Configuration

ANAGING

OUR

IRELESS

Authorization

Authorization is the method for providing users with specific rights to the

network by associating attribute-value (AV) pairs to the user. AAA

authorization works by assembling a set of attributes that describe what

the user is authorized to perform. These attributes are compared to the

information contained in a local database or on a RADIUS server for a

given user and the result is returned to the WX switch to determine the

user's actual capabilities and restrictions.

You can configure attributes, such as the time of day or specific VLAN

access. You can also control access using security access control lists

(ACLs), Mobility Profiles

deny traffic based on IP protocol, IP addresses and, optionally, TCP or

UDP port. They also can be used to set type-of-service (ToS) and

class-of-service (CoS) values in a packet. Mobility Profiles contain

attributes to allow or deny access to specific parts of the network for a

specific user or group of users. Location Policies are an ordered list of

location policy rules based on a user glob, VLAN, and/or ports. A Location

Policy can be configured if you need to override the configured AAA user

authorization attributes locally for a specific WX.

Accounting

Accounting collects and sends information used for billing, auditing, and

reporting—for example, user identities, connection start and stop times,

the number of packets received and sent, and the number of bytes

transferred. You can track sessions through accounting information

stored locally or on a remote RADIUS server. As network users roam

throughout the network, accounting records track them and their

network usage.

A Mobility Domain is a collection of WX switches that work together to

support roaming users. One of the WX switches is defined as a seed

device, which distributes information to the other WX switches defined in

the Mobility Domain.

A Mobility Domain allows users to roam geographically from one WX

switch to another without losing network connectivity. Users connect as

a member of a VLAN through their authorized identities.

3WXM

ETWORK WITH

, and Location Policies. Security ACLs permit or

Table of Contents

This manual is also suitable for:

3crwx440095a Crwxr10095a 3crwxr10095a

Authorization; Accounting; System And Administration Configuration - 3Com 3CRWX120695A User Manual

Authorization

Accounting

Related Manuals for 3Com 3CRWX120695A

Related Content for 3Com 3CRWX120695A

This manual is also suitable for:

Table of Contents