3Com 3CRWX120695A Reference Manual page 330
Wireless lan mobility system wireless lan switch manager
Hide thumbs
Also See for 3CRWX120695A:
- Configuration manual (728 pages) ,
- Command reference manual (526 pages) ,
- User manual (190 pages)
Table of Contents
Advertisement
330
C
7: C
HAPTER
ONFIGURING
A
, A
UTHENTICATION
UTHORIZATION
during which the user can access the network, you can apply inbound
and outbound access control lists (ACLs) to the user's traffic, and so on.
To assign attributes on the RADIUS server, use the standard RADIUS
attributes supported on the server. To assign attributes in the WX switch's
local database, use the MSS vendor-specific attributes (VSAs).
(The RADIUS attributes supported by MSS are described in an appendix in
the Wireless LAN Switch and Controller Configuration Guide.)
MSS provides the following VSAs, which you can assign to users
configured in the local database or on a RADIUS server:
Encryption-Type — Specifies the type of encryption required for
access by the client. Clients who attempt to use an unauthorized
encryption method are rejected.
End-Date — Date and time after which the user is no longer allowed
to be on the network.
Mobility-Profile — Controls the WX switch ports a user can access.
For wireless users, an MSS Mobility Profile specifies the MAP access
points through which the user can access the network. For wired
authentication users, the Mobility Profile specifies the wired
authentication ports through which the user can access the network.
SSID — SSID the user is allowed to access after authentication.
Start-Date — Date and time at which the user becomes eligible to
access the network. MSS does not authenticate the user unless the
attempt to access the network occurs at or after the specified date
and time, but before the end-date (if specified).
Time-of-Day — Day(s) and time(s) during which the user is permitted
to log into the network.
URL — URL to which the user is redirected after successful Web AAA.
VLAN-Name — VLAN to place the user on.
You also can assign the following RADIUS attributes to users configured
in the local database.
Filter-Id — Security ACL that permits or denies traffic received by
(input) or sent by (output) the user.
Service-Type — Type of access the user is requesting, which can be
network access, administrative access to the enabled (configuration)
,
A
P
AND
CCOUNTING
ARAMETERS
Advertisement
Table of Contents
Related Manuals for 3Com 3CRWX120695A
Related Products for 3Com 3CRWX120695A
- 3Com 3CR17251-91 - Switch 5500G-EI Stackable Gigabit Ethernet
- 3Com 3CR17561-91-US - Switch 4500 26PORT Managed 24 10/100 2 Gbe Stackable RJ45
- 3Com 3CR17571-91 - Switch 4500 PWR
- 3Com 3CRDSF9PWR-US - OfficeConnect Managed Fast Ethernet PoE Switch
- 3Com 3CRS48G-24S-91
- 3Com 3CRS48G-48-91
- 3Com 3CRS48G-48P-91
- 3Com 3CRBSG2893 - Baseline Smart 28PORT Gig Sfp 10/100/1000