Alcatel-Lucent OmniSwitch 6850-48 Network Configuration Manual page 751
Software release 6
Hide thumbs
Also See for OmniSwitch 6850-48:
- Cli reference manual (3706 pages) ,
- Management manual (312 pages) ,
- Hardware user's manual (188 pages)
Table of Contents
Advertisement
Configuring Access Guardian
Supplicant Policy Command Example
802.1x 2/12 supplicant policy authentication pass
group-mobility captive-portal fail vlan 10 captive-
portal
802.1x 2/1 supplicant policy authentication fail
captive-portal
802.1x 2/12 supplicant policy authentication pass
user-network-profile Engineering block fail vlan
10 captive-portal
802.1x 2/1 supplicant policy authentication fail
user-network profile Engineering block
OmniSwitch AOS Release 6 Network Configuration Guide
Configuring Access Guardian Policies
Description
If the 802.1x authentication process is successful
but does not return a VLAN ID for the device, then
the following occurs:
1
Group Mobility rules are applied.
2
If Group Mobility classification fails, then the
user is prompted to enter a user name and pass-
word through a web-based portal.
If the device fails 802.1x authentication, then the
following occurs:
1
If VLAN 10 exists and is not an authenticated
VLAN, then the device is assigned to
VLAN 10.
2
If VLAN 10 does not exist or is an authenti-
cated VLAN, then the user is prompted to enter
a user name and password through a web-
based portal.
If the 802.1x authentication process is successful
but does not return a VLAN ID, the user is blocked
from accessing the switch on port 2/1.
If the device fails 802.1x authentication, then the
user is prompted to enter a user name and pass-
word through a web-based portal.
If the 802.1x authentication process is successful
but does not return a VLAN ID, then the following
occurs:
1
The "Engineering" User Network Profile
(UNP) is applied.
2
If applying the UNP fails, the user is blocked
from accessing the switch on port 2/12.
If the device fails 802.1x authentication, then the
following occurs:
1
If VLAN 10 exists and is not an authenticated
VLAN, then the device is assigned to
VLAN 10.
2
If VLAN 10 does not exist or is an authenti-
cated VLAN, then the user is prompted to enter
a user name and password through a web-
based portal.
If the 802.1x authentication process is successful
but does not return a VLAN ID, the device is
blocked from accessing the switch on port 2/1.
If the device fails 802.1x authentication, then the
following occurs:
1
The "Engineering" UNP is applied.
2
If applying the UNP fails, the user is blocked
from accessing the switch on port 2/1.
September 2009
page 34-25
Hide quick links:
Advertisement
Table of Contents
