Motorola WS5100 Series Migration Giude page 124

9-4 WS5100 Series Switch Migration Guide
4. Configure the CA/Server certificates. Execute the following commands with the corresponding trust point
names. Trust point must be configured before executing these commands. For more details refer to
Configuring the Certificate Manager using
WS5100(config-radsrv)# ca trust-point tp1
WS5100(config-radsrv)# server trust-point tp1
If the CA or Server trust point is not configured, then the default trust-point will be used.
5. Create users in the local database.
WS5100(config-radsrv)# rad-user adam password 0 mypassword
WS5100(config-radsrv)# rad-user bob password 0 secret!!
6. Create groups in the local database.
WS5100(config-radsrv)# group sales
7. Add users to the group.
WS5100(config-radsrv-group)# rad-user bob
WS5100(config-radsrv-group)# rad-user adam
To remove the user—adam from group sales, use
WS5100(config-radsrv-group # no rad-user adam
8. Configuring group policies:
a. Day policy.
WS5100(config-radsrv-group)# policy day sa su
b. Time policy
WS5100(config-radsrv-group)# policy time start 12 00 end 03 00
c. WLAN access policy
WS5100(config-radsrv-group)# policy wlan 1 2
d. VLAN configuration
WS5100(config-radsrv-group)#policy vlan 1
9. Create a guest group in the local database.
WS5100(config-radsrv)# group guest-group1
10.Configure group policies for the group—guest-group1. Enable guest access for this group.
WS5100(config-radsrv-group)# guest enable
11.Create a guest user and add that user to group guest.
WS5100(config-radsrv)# rad-user guest-user password 0 symbol group guest-
group1 guest expiry-date 21:07:2006 expiry-time 13:30
12.Configure NAS to add radius client (NAS) entries.
WS5100(config-radsrv)# nas 157.235.207.0/24 key 0 symbol123
13.Configure proxy server and add realms.
WS5100(config-radsrv)# proxy retry-delay 5
WS5100(config-radsrv)# proxy retry-count 4
CLI.