Table of Contents
Advertisement
Operation Manual - Security
Quidway S3500 Series Ethernet Switches
4.4 EAD Configuration Example
Note:
For Telnet and FTP users, their remote server authentication can be configured in
similar ways. The following description uses the authentication configuration for Telnet
uses as example.
I. Network requirements
In the network environment as shown in Figure 4-2, make proper configuration on the
switch, so that the RADIUS server can implement authentication and the security policy
server can perform EAD control on Telnet users.
The configuration tasks are as follows:
Connect the RADIUS authentication server to the switch and configure its IP
address as 10.110.91.164.
Set the encryption password for exchanging packets with the RADIUS server to
"expert".
Configure the switch to forward packets to the RADIUS server after the user
domain name is removed from the user name.
Configure the security policy server, with its IP address as 10.110.91.166.
Configure the virus patch server, with its IP address as 10.110.91.168.
II. Network diagram
Telnet user
Security policy severs
(IP address:10.110.91.166 )
Figure 4-2 Network diagram for EAD configuration
Authentication severs
(IP address 10.110.91.164 )
Virus patch severs
(IP address: 10.110.91.168 )
Huawei Technologies Proprietary
4-3
Chapter 4 EAD Configuration
Internet
Internet
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
